Lucene search
K

5409 matches found

0day.today
0day.today
added 2007/05/23 12:0 a.m.41 views

Microsoft Visual Basic 6.0 Project (Description) Stack overflow PoC

Exploit for unknown platform in category dos / poc =================================================================== Microsoft Visual Basic 6.0 Project Description Stack overflow PoC =================================================================== !/usr/local/bin/perl Discovered By UmZ Umair...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2007/05/23 12:0 a.m.41 views

Microsoft Visual Basic 6.0 Project - Description Stack Overflow (PoC)

!/usr/local/bin/perl Discovered By UmZ Umair Manzoor comments are welcome at umz32.dllatgmail.com Dated 23-02-2007 Time : 02:00 AM PST Stack Overflow Buffer Size 1037690 overflow offset 004A2E43 EBX contain values Memory to write 03B50188 Visual Basic Project Description Stack overflow Affected...

7AI score
Exploits0
Prion
Prion
added 2007/05/16 10:30 p.m.16 views

Cross site request forgery (csrf)

The 3Com TippingPoint IPS do not properly handle certain full-width and half-width Unicode character encodings in an HTTP POST request, which might allow remote attackers to evade detection of HTTP traffic...

7.5CVSS7.2AI score0.02119EPSS
Exploits0References8
NVD
NVD
added 2007/05/16 10:30 p.m.21 views

CVE-2007-2734

The 3Com TippingPoint IPS do not properly handle certain full-width and half-width Unicode character encodings in an HTTP POST request, which might allow remote attackers to evade detection of HTTP traffic...

7.5CVSS6.7AI score0.02119EPSS
Exploits0References8
Cvelist
Cvelist
added 2007/05/16 10:0 p.m.25 views

CVE-2007-2734

The 3Com TippingPoint IPS do not properly handle certain full-width and half-width Unicode character encodings in an HTTP POST request, which might allow remote attackers to evade detection of HTTP traffic...

6.7AI score0.02119EPSS
Exploits0References8
CVE
CVE
added 2007/05/16 10:0 p.m.58 views

CVE-2007-2734

The CVE-2007-2734 entry concerns the 3Com TippingPoint IPS failing to properly handle certain full-width/half-width Unicode encodings in HTTP POST requests, which could allow remote attackers to evade detection of HTTP traffic. Affected product: 3Com TippingPoint IPS. Root cause: improper encodin...

7.5CVSS6.7AI score0.02119EPSS
Exploits0References8Affected Software8
Prion
Prion
added 2007/05/16 1:19 a.m.15 views

Design/Logic Flaw

Check Point Web Intelligence does not properly handle certain full-width and half-width Unicode character encodings, which might allow remote attackers to evade detection of HTTP traffic...

7.8CVSS7.3AI score0.01976EPSS
Exploits0References4
Prion
Prion
added 2007/05/16 1:19 a.m.8 views

Design/Logic Flaw

Multiple IBM ISS Proventia Series products, including the A, G, and M series, do not properly handle certain full-width and half-width Unicode character encodings, which might allow remote attackers to evade detection of HTTP traffic...

7.8CVSS7.1AI score0.01976EPSS
Exploits0References4Affected Software3
Prion
Prion
added 2007/05/16 1:19 a.m.18 views

Code injection

The Cisco Intrusion Prevention System IPS and IOS with Firewall/IPS Feature Set do not properly handle certain full-width and half-width Unicode character encodings, which might allow remote attackers to evade detection of HTTP traffic...

7.8CVSS7.2AI score0.03EPSS
Exploits0References12Affected Software2
NVD
NVD
added 2007/05/16 1:19 a.m.14 views

CVE-2007-2690

Multiple IBM ISS Proventia Series products, including the A, G, and M series, do not properly handle certain full-width and half-width Unicode character encodings, which might allow remote attackers to evade detection of HTTP traffic...

7.8CVSS6.5AI score0.01976EPSS
Exploits0References4
NVD
NVD
added 2007/05/16 1:19 a.m.16 views

CVE-2007-2688

The Cisco Intrusion Prevention System IPS and IOS with Firewall/IPS Feature Set do not properly handle certain full-width and half-width Unicode character encodings, which might allow remote attackers to evade detection of HTTP traffic...

7.8CVSS6.7AI score0.03EPSS
Exploits0References12
NVD
NVD
added 2007/05/16 1:19 a.m.13 views

CVE-2007-2689

Check Point Web Intelligence does not properly handle certain full-width and half-width Unicode character encodings, which might allow remote attackers to evade detection of HTTP traffic...

7.8CVSS6.7AI score0.01976EPSS
Exploits0References4
Cvelist
Cvelist
added 2007/05/16 1:0 a.m.21 views

CVE-2007-2688

The Cisco Intrusion Prevention System IPS and IOS with Firewall/IPS Feature Set do not properly handle certain full-width and half-width Unicode character encodings, which might allow remote attackers to evade detection of HTTP traffic...

6.7AI score0.03EPSS
Exploits0References12
CVE
CVE
added 2007/05/16 1:0 a.m.39 views

CVE-2007-2689

Check Point Web Intelligence is affected by CVE-2007-2689 due to improper handling of certain full-width and half-width Unicode character encodings in HTTP traffic processing. The underlying issue allows remote attackers to evade detection of HTTP traffic. Affected product: Check Point Web Intell...

7.8CVSS6.7AI score0.01976EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2007/05/16 1:0 a.m.18 views

CVE-2007-2689

Check Point Web Intelligence does not properly handle certain full-width and half-width Unicode character encodings, which might allow remote attackers to evade detection of HTTP traffic...

6.7AI score0.01976EPSS
Exploits0References4
Cvelist
Cvelist
added 2007/05/16 1:0 a.m.14 views

CVE-2007-2690

Multiple IBM ISS Proventia Series products, including the A, G, and M series, do not properly handle certain full-width and half-width Unicode character encodings, which might allow remote attackers to evade detection of HTTP traffic...

6.5AI score0.01976EPSS
Exploits0References4
CVE
CVE
added 2007/05/16 1:0 a.m.57 views

CVE-2007-2690

Technical details (affected products, root cause, impacts, fixes) for CVE-2007-2690 are not provided in the connected documents. The initial description only notes Unicode handling issues in IBM ISS Proventia products. Monitor for official updates.

7.8CVSS6.6AI score0.01976EPSS
Exploits0References4Affected Software3
CVE
CVE
added 2007/05/16 1:0 a.m.70 views

CVE-2007-2688

The CVE-2007-2688 issue affects Cisco’s Intrusion Prevention System (IPS) and IOS with Firewall/IPS Feature Set. The vulnerability arises from improper handling of certain full-width and half-width Unicode encodings, which could allow remote attackers to evade detection of HTTP traffic. What’s af...

7.8CVSS6.7AI score0.03EPSS
Exploits0References12Affected Software1
securityvulns
securityvulns
added 2007/05/16 12:0 a.m.27 views

Multiple applications Unicode Full Width / Half Width characters protection bypass

Client application may support translation of Halfwidth/Fullwidth Unicode characters unicode FF00 - FFEE, while content filter doesn't...

2.6AI score
Exploits0References1
securityvulns
securityvulns
added 2007/05/16 12:0 a.m.62 views

GS07-01 Full-Width and Half-Width Unicode Encoding IDS/IPS/WAF Bypass Vulnerability

GS07-01 Full-Width and Half-Width Unicode Encoding IDS/IPS/WAF Bypass Vulnerability Date & Version : 04/14/2007 - 1.0 Description : Various HTTP content scanning systems fail to properly scan full-width/half-width Unicode encoded traffic. This may allow malicious content to bypass HTTP content...

Exploits0
Rows per page
Query Builder