POSTs sent to the NETASQ Firewall UTM bypass the metacharacter filtering.
ef3dfcfe1ec79466e80072f5a662802ba3a6f5c5b73e253876aec8cf8ec8410d
-----------------------------------------------------------------------------------------------------
Title: NETASQ Firewall - UTM suffer from bypassing metacharacters filter
Date : 2012-07-27
coolkaveh Advisory
coolkaveh@rocketmail.com
Https://twitter.com/coolkaveh
Product : Netasq utm
Vendor Homepage: http://netasq.com
Criticality level : High
Description : A vulnerability has been discovered in Netasq UTM, which can be exploited by malicious people to bypass metacharacters filter provided by Netasq UTM. Input passed via the method POST is not properly filtering before being passes to the webserver. This can be exploited to SQL injection and etc.
Credit : coolkaveh