Fortinet FortiOS 5.4.1 < 5.4.4 Multiple Vulnerabilities
Medium Nessus Plugin ID 97387
SynopsisThe remote host is affected by multiple vulnerabilities.
DescriptionThe remote host is running a version of Fortinet FortiOS that is 5.4.1 or later but prior to 5.4.4. It is, therefore, affected by the following vulnerabilities :
- A security bypass vulnerability exists in the HTTP evader tool due to improper handling of HTTP content-encoding. An unauthenticated, remote attacker can exploit this to bypass antivirus checks.
- A security bypass vulnerability exists in the DLP component that allows an unauthenticated, remote attacker to bypass the built-in file-type filter. Note that this vulnerability only affects FortiOS version 5.4.3. (VulnDB 152267)
SolutionUpgrade to Fortinet FortiOS 5.4.4 or later.