Guest

Preview Tool

Cisco Bug: CSCum03212 - URLF: Websense v4 message length calculation is incorrect by 2 bytes

Last Modified

Nov 27, 2020

Products (2)

  • Cisco Adaptive Security Appliance (ASA) Software
  • Cisco Adaptive Security Appliance (ASA) Software

Known Affected Releases

9.1(4)

Description (partial)

Symptom:
The URL filtering lookup requests sent by the ASA to a Websense based URL filtering server may have the incorrect Message Length present in the TCP payload. Some Websense instances may reject these URL filtering lookup requests, resulting in poor performance and incorrect filtering decisions.

Conditions:
This has been seen in ASA code version 9.1.2 and later. It may existing in other builds as well. The issue only appears to affect Websense Version 4 packets. You can tell what version of Websense protocol is being used by looking at your url-server configuration. 

For example, the following is a version 4 server (affected):
url-server (inside) vendor websense host 10.0.0.100 timeout 30 protocol TCP version 4

For example, the following is a version 1 server (not affected):
url-server (inside) vendor websense host 10.0.0.100 timeout 30 protocol TCP version 1
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.