Title: Raptor Firewall HTTP Request Proxying Vulnerability
Severity: MODERATE
Description:
Raptor Firewall is a product distributed and maintained by Axent Technologies, Inc. Raptor is an Enterprise-level firewall, providing a mixture of features and performance.
A problem in the handling of the HTTP protocol by the firewall could leave sensitive web resources not running on standard ports accessible to unauthorized users.
Placing a webserver behind the firewall, and permitting external HTTP access to the webserver on port 80 allows access to any system behind the firewall via HTTP. This is due to the insufficient handling of requests by clients.
A client may configure their browser to make Raptor act as a proxy. By using Raptor as a proxy, the client can access any system behind the firewall within the port range of 79-99, and 200-65535 over TCP, excluding port 80 over TCP.
This vulnerability not only permits traffic external to the protected network entry, but also permits traffic internal to the protected network a means of exit.
Affected Products:
- Axent Raptor 6.5.0
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
