NVD

Id
78124  
Name
CVE-2001-0669  
Description
Various Intrusion Detection Systems (IDS) including (1) Cisco Secure Intrusion Detection System, (2) Cisco Catalyst 6000 Intrusion Detection System Module, (3) Dragon Sensor 4.x, (4) Snort before 1.8.1, (5) ISS RealSecure Network Sensor 5.x and 6.x before XPU 3.2, and (6) ISS RealSecure Server Sensor 5.5 and 6.0 for Windows, allow remote attackers to evade detection of HTTP attacks via non-standard "%u" Unicode encoding of ASCII characters in the requested URL.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-05  
Published
2001-10-30  
Modified Date
2016-10-17  
Seq
2001-0669  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
391033 78124 CVE-2001-0669 20010905 %u encoding IDS bypass vulnerability  View
391034 78124 CVE-2001-0669 20010905 Cisco Secure Intrusion Detection System Signature Obfuscation Vulnerability  View
391035 78124 CVE-2001-0669 VU#548515  View
391036 78124 CVE-2001-0669 3292  View
391037 78124 CVE-2001-0669 20010905 Multiple Vendor IDS Unicode Bypass Vulnerability  View

Related JVN