FortiClient Vulnerability

Host Head Injection Vulnerability for Endpoint Protector

Description

CoSoSys Endpoint Protector 5.1.0.2 allows Host Header Injection which allows an attackers to use web-cache poisoning to import scripts and even generate password resets links with its value.

Affected Applications

Endpoint Protector

CVE References

CVE-2019-13285

Other References

https://www.esecforte.com/endpoint-protector-india-cososys-dlp/

ID	2415
Created	Oct 07, 2021
Description Updated	Feb 16, 2022
Risk
Coverage	FortiClient
OS	Windows
Vendor	CoSoSys
Patch	manual
Application	Endpoint Protector

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiClient Vulnerability

Host Head Injection Vulnerability for Endpoint Protector

Description

Affected Applications

CVE References

Other References

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

FortiClient Vulnerability

Host Head Injection Vulnerability for Endpoint Protector

Description

Affected Applications

CVE References

Other References

Threat Intelligence
Center