NuytsTech Security

CVE-2007-3701

by ·

TippingPoint IPS before 20070710 does not properly handle a hex-encoded alternate Unicode ‘/’ (slash) character, which might allow remote attackers to send certain network traffic and avoid detection, as demonstrated by a cmd.exe attack.

Date published : 2007-07-11

http://www.securityfocus.com/bid/24855

http://www.securityfocus.com/archive/1/473311/100/0/threaded

Tags: