Info

Disclosure

May 14, 2007

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Multiple Cisco products contain a flaw that may allow a malicious user to bypass detection of malicious HTTP traffic. The issue is triggered when half-width or full-width Unicode characters are used, which may be misinterpreted by the device. It is possible that the flaw may allow malicious traffic to escape filtering resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

Cisco Systems, Inc.	IPS	Unknown or Unspecified
	IOS	Unknown or Unspecified
	ASA	Unknown or Unspecified
	PIX	Unknown or Unspecified

References

Security Tracker: 1018053 1018054
CVE ID: 2007-2688 (see also: NVD)
Bugtraq ID: 23980
Secunia Advisory ID: 25285
ISS X-Force ID: 34277
CERT VU: 739224
VUPEN Advisory: ADV-2007-1803
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-05/0218.html
Vendor Specific Advisory URL: http://www.cisco.com/en/US/products/products_security_response09186a008083f82e.html
http://www.cisco.com/warp/public/707/cisco-sr-20070514-unicode.shtml
Other Advisory URL: http://www.gamasec.net/english/gs07-01.html

Credit

Fatih Ozavci -
Caglar Cakici -

Direct URL: http://osvdb.org/35336

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Cisco Systems, Inc.

IPS

IOS

ASA

PIX

References

Credit