Aladdin Knowledge Systems eSafe Gateway 3.0 Unicode Script-filtering Bypass Vulnerability

2001-05-29T00:00:00
ID EDB-ID:20891
Type exploitdb
Reporter eDvice Security Services
Modified 2001-05-29T00:00:00

Description

Aladdin Knowledge Systems eSafe Gateway 3.0 Unicode Script-filtering Bypass Vulnerability. CVE-2001-0521. Remote exploits for multiple platform

                                        
                                            source: http://www.securityfocus.com/bid/2801/info

eSafe Gateway is a security utility used for filtering internet content.

An html file may be crafted to bypass the script-filtering feature offered by eSafe Gateway. This is done by simply encoding the <SCRIPT> tag in Unicode format, such that the filter ignores the call to execute the script. 

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/20891.zip