Vulnerability Note VU#739224
HTTP content scanning systems full-width/half-width Unicode encoding bypass
Various HTTP content scanning systems fail to properly scan full-width/half-width Unicode encoded traffic. This may allow malicious HTTP traffic to bypass content scanning systems.
Full-width and half-width encoding is a technique for encoding Unicode characters. Various HTTP content scanning systems fail to properly scan full-width/half-width Unicode encoded HTTP traffic. By sending specially-crafted HTTP traffic to a vulnerable content scanning system, an attacker may be able to bypass that content scanning system.
A remote, unauthenticated attacker may be able to bypass HTTP content scanning systems.
Check with your vendor
Refer to the Systems Affected section of this document for information about specific vendors regarding this issue.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|3com, Inc.||Affected||16 Apr 2007||17 May 2007|
|Cisco Systems, Inc.||Affected||16 Apr 2007||15 May 2007|
|Internet Security Systems, Inc.||Affected||16 Apr 2007||16 May 2007|
|McAfee||Affected||16 Apr 2007||23 May 2007|
|Novell, Inc.||Affected||16 Apr 2007||07 Sep 2007|
|Secure Computing Network Security Division||Affected||16 Apr 2007||01 Aug 2007|
|Stonesoft||Affected||16 Apr 2007||22 May 2007|
|TippingPoint, Technologies, Inc.||Affected||16 Apr 2007||17 May 2007|
|Apple Computer, Inc.||Not Affected||16 Apr 2007||24 Apr 2007|
|EMC, Inc. (formerly Data General Corporation)||Not Affected||16 Apr 2007||23 May 2007|
|Enterasys Networks||Not Affected||16 Apr 2007||29 Aug 2007|
|Extreme Networks||Not Affected||16 Apr 2007||22 Apr 2009|
|F5 Networks, Inc.||Not Affected||16 Apr 2007||19 Jun 2007|
|Force10 Networks, Inc.||Not Affected||16 Apr 2007||17 May 2007|
|Hewlett-Packard Company||Not Affected||16 Apr 2007||18 Apr 2007|
CVSS Metrics (Learn More)
This issue was reported by Fatih Ozavci and Caglar Cakici of Gamasec Security.
This document was written by Jeff Gennari.
- CVE IDs: Unknown
- Date Public: 14 May 2007
- Date First Published: 14 May 2007
- Date Last Updated: 22 Apr 2009
- Severity Metric: 1.76
- Document Revision: 24
If you have feedback, comments, or additional information about this vulnerability, please send us email.