NVD

Id
9831  
Name
CVE-2011-3140  
Description
IBM Web Application Firewall, as used on the G400 IPS-G400-IB-1 and GX4004 IPS-GX4004-IB-2 appliances with update 31.030, does not properly handle query strings with multiple instances of the same parameter, which allows remote attackers to bypass intended intrusion prevention by dividing a dangerous parameter value into substrings, as demonstrated by a SQL statement that is split across multiple iid parameters and then sent to a .aspx file on an IIS web server.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-07  
Published
2011-08-15  
Modified Date
2011-09-21  
Seq
2011-3140  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
56414 9831 CVE-2011-3140 8339  View
56415 9831 CVE-2011-3140 1025683  View
56416 9831 CVE-2011-3140 http://www.iss.net/security_center/reference/vuln/HTTP_Parameter_Abuse.htm  View
56417 9831 CVE-2011-3140 20110621 TWSL2011-006: IBM Web Application Firewall Bypass  View
56418 9831 CVE-2011-3140 48370  View
56419 9831 CVE-2011-3140 http-parameter-pollution(67178)  View
56420 9831 CVE-2011-3140 https://www.trustwave.com/spiderlabs/advisories/TWSL2011-006.txt  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
34624 JVNDB-2011-004866 G400 IPS-G400-IB-1 および GX4004 IPS-GX4004-IB-2 アプライアンスで使用される IBM Web Application Firewall における侵入防御を回避する脆弱性 G400 IPS-G400-IB-1 および GX4004 IPS-GX4004-IB-2 アプライアンスで使用される IBM Web Application Firewall は、同じパラメータのインスタンスのクエリ文字列を適切に処理しないため、侵入防御を回避する脆弱性が存在します。 CVE-2011-3140 51047 CVE-2011-3140 9831 5 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-004866.html 2011-08-15 2012-03-27 View