Title: SurfControl SuperScout for MS Proxy Site Filtering Vulnerability
Severity: LOW
Description:
SurfControl SuperScout is an internet access control application which filters out websites based upon categorization such as Adult, Gambling, etc. SuperScout for MS Proxy contains features for monitoring, reporting and controlling various web protocol requests. This feature keeps track of all internet-related activity.
It is possible to bypass Content Filtering rules if the user knows the desired website's IP address. Converting each octet of the IP into octal numbers and adding eight zeros to the first and thrid octet, and seven zeros to the second and fourth octet, will lead SuperScout to bypass the filtering rules. The monitoring feature will not document a successful bypass, but instead will leave a blank line.
Once the sequence of octal numbers and zeros has been assembled, inserting this number sequence into a browser will enable the user to view the desired website.
Affected Products:
- SurfControl SuperScout 3.0.1
- SurfControl SuperScout 3.0.2
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
