195 matches found
CVE-2002-0627
The Web server for Polycom ViewStation before 7.2.4 allows remote attackers to bypass authentication and read files via Unicode encoded requests...
CVE-2001-0669
Various Intrusion Detection Systems IDS including 1 Cisco Secure Intrusion Detection System, 2 Cisco Catalyst 6000 Intrusion Detection System Module, 3 Dragon Sensor 4.x, 4 Snort before 1.8.1, 5 ISS RealSecure Network Sensor 5.x and 6.x before XPU 3.2, and 6 ISS RealSecure Server Sensor 5.5 and 6...
CVE-2001-0669
Various Intrusion Detection Systems IDS including 1 Cisco Secure Intrusion Detection System, 2 Cisco Catalyst 6000 Intrusion Detection System Module, 3 Dragon Sensor 4.x, 4 Snort before 1.8.1, 5 ISS RealSecure Network Sensor 5.x and 6.x before XPU 3.2, and 6 ISS RealSecure Server Sensor 5.5 and 6...
CVE-2001-0669
CVE-2001-0669 affects multiple IDS products (Cisco Secure IDS, Cisco Catalyst 6000 IDS Module, Dragon Sensor 4.x, Snort before 1.8.1, ISS RealSecure Network Sensor 5.x/6.x before XPU 3.2, and ISS RealSecure Server Sensor 5.5/6.0 for Windows) where an attacker can bypass HTTP attack detection by u...
Обход многих IDS через Unicode (protection bypass)
Используя Unicode-кодирование во многих протоколах возможно обойти защиту IDS...
Cisco Secure IDS 2.0/3.0 / Snort 1.x / ISS RealSecure 5/6 / NFR 5.0 - Encoded IIS Detection Evasion
source: https://www.securityfocus.com/bid/3292/info The Microsoft IIS web server supports a non-standard method of encoding web requests. Because this method is non-standard, intrusion detection systems may not detect attacks encoded using this method. This vulnerability only affects intrusion...
CVE-2001-0709
Microsoft IIS 4.0 and before, when installed on a FAT partition, allows a remote attacker to obtain source code of ASP files via a URL encoded with Unicode...
CVE-2001-0521
Aladdin eSafe Gateway versions 3.0 and earlier allows a remote attacker to circumvent HTML SCRIPT filtering via the UNICODE encoding of SCRIPT tags within the HTML document...
Обход Trend Micro AppletTrap (protection bypass)
Можно обойти защиту от Javascript Используя Unicode - кодировку...
CVE-2001-0521
CVE-2001-0521 affects Aladdin eSafe Gateway versions 3.0 and earlier. The issue allows a remote attacker to bypass the gateway’s HTML SCRIPT filtering by using Unicode-encoded SCRIPT tags within the HTML document. This describes a filtering bypass in the web gateway; the documents do not provide ...
CVE-2001-0521
Aladdin eSafe Gateway versions 3.0 and earlier allows a remote attacker to circumvent HTML SCRIPT filtering via the UNICODE encoding of SCRIPT tags within the HTML document...
Aladdin Knowledge Systems eSafe Gateway 3.0 - Unicode Script-filtering Bypass
source: https://www.securityfocus.com/bid/2801/info eSafe Gateway is a security utility used for filtering internet content. An html file may be crafted to bypass the script-filtering feature offered by eSafe Gateway. This is done by simply encoding the tag in Unicode format, such that the filter...
Vulnerability discovered in SpearHead NetGap
Background --------------- SpearHead's NetGAP™ appliance physically disconnects a company's network from the Internet. The product consists of two separate computers, an Untrusted CPU and a Trusted CPU, that are never directly connected at any given time. NetGap™ includes a content checking engin...
Aladdin Knowledge Systems eSafe Gateway 3.0 - Unicode Script-filtering Bypass
Aladdin Knowledge Systems eSafe Gateway 3.0 - Unicode Script-filtering Bypass source: https://www.securityfocus.com/bid/2801/info eSafe Gateway is a security utility used for filtering internet content. An html file may be crafted to bypass the script-filtering feature offered by eSafe Gateway...
CVE-2000-0884
IIS 4.0 and 5.0 allows remote attackers to read documents outside of the web root, and possibly execute arbitrary commands, via malformed URLs that contain UNICODE encoded characters, aka the "Web Server Folder Traversal" vulnerability...