Imperva Security Response for CVE-2010-1329

Evasion vulnerability in SecureSphere Web Application Firewall and Database Firewall

Revision History
Date: 4/5/2010
Comments: Initial Version

Status Summary

Affected versions and fixes listed below.


Description

It is possible to evade some of the detection mechanisms of the SecureSphere Web Application Firewall and Database Firewall by sending a specially crafted, extremely large request.


Acknowledgement

Clear Skies Security (http://www.clearskies.net)


Vendor Fix

In our latest cumulative patch, Imperva has included a specific fix which resolves the problem. This cumulative patch also enhances the performance of the SecureSphere system. Imperva urges you to install this important patch at your earliest convenience.


Below is a table of affected versions and the minimum required patch numbers. For help in applying these patches, please contact Imperva Support (support@imperva.com).

Version Patch Number
7.0.0.7078 Patch 11
7.0.0.7061 Patch 11
6.2.0.6463 Patch 24
6.2.0.6442 Patch 24
6.0.6.6302 Patch 30
6.0.6.6274 Patch 30
6.0.5.6238 Patch 30
6.0.5.6230 Patch 30
6.0.4.6128 Patch 30
5.0.0.5082 Patch 30
6.0.4.6128 on XOS 8.0/5 ssgw-6128-CBI10
7.0.0.7078 on XOS 8.5.3 ssgw-7.0.0.7267-CBI28


PATCH DOWNLOAD: The patch and release notes are available on the FTP Site.
(Imperva Username and Credentials Required)