SkipNavigation
Home | FAQ | Contact | Privacy Policy
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information


 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric
 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips
 

Vulnerability Note VU#739224

HTTP content scanning systems full-width/half-width Unicode encoding bypass

Overview

Various HTTP content scanning systems fail to properly scan full-width/half-width Unicode encoded traffic. This may allow malicious HTTP traffic to bypass content scanning systems.

I. Description

Full-width and half-width encoding is a technique for encoding Unicode characters. Various HTTP content scanning systems fail to properly scan full-width/half-width Unicode encoded HTTP traffic. By sending specially-crafted HTTP traffic to a vulnerable content scanning system, an attacker may be able to bypass that content scanning system.

II. Impact

A remote, unauthenticated attacker may be able to bypass HTTP content scanning systems.

III. Solution

Check with your vendor

Refer to the Systems Affected section of this document for information about specific vendors regarding this issue.

Systems Affected

VendorStatusDate Updated
3com, Inc.Vulnerable17-May-2007
AlcatelUnknown16-Apr-2007
Apple Computer, Inc.Not Vulnerable24-Apr-2007
AT&TUnknown16-Apr-2007
Avaya, Inc.Unknown16-Apr-2007
Avici Systems, Inc.Unknown16-Apr-2007
Borderware TechnologiesUnknown16-Apr-2007
BroUnknown16-Apr-2007
Charlotte's Web NetworksUnknown16-Apr-2007
Check Point Software TechnologiesUnknown16-Apr-2007
Chiaro Networks, Inc.Unknown16-Apr-2007
Cisco Systems, Inc.Vulnerable15-May-2007
CitrixUnknown26-Apr-2007
ClavisterUnknown16-Apr-2007
Computer AssociatesUnknown16-Apr-2007
Computer Associates eTrust Security ManagementUnknown16-Apr-2007
Conectiva Inc.Unknown16-Apr-2007
Cray Inc.Unknown16-Apr-2007
D-Link Systems, Inc.Unknown16-Apr-2007
Data Connection, Ltd.Unknown16-Apr-2007
Debian GNU/LinuxUnknown14-May-2007
EMC, Inc. (formerly Data General Corporation)Not Vulnerable23-May-2007
Engarde Secure LinuxUnknown16-Apr-2007
Enterasys NetworksNot Vulnerable29-Aug-2007
EricssonUnknown16-Apr-2007
eSoft, Inc.Unknown16-Apr-2007
Extreme NetworksUnknown16-Apr-2007
F-Secure CorporationUnknown24-May-2007
F5 Networks, Inc.Not Vulnerable19-Jun-2007
Fedora ProjectUnknown16-Apr-2007
Force10 Networks, Inc.Not Vulnerable17-May-2007
Fortinet, Inc.Unknown16-Apr-2007
Foundry Networks, Inc.Unknown16-Apr-2007
FreeBSD, Inc.Unknown16-Apr-2007
FujitsuUnknown16-Apr-2007
Gentoo LinuxUnknown16-Apr-2007
Global Technology AssociatesUnknown16-Apr-2007
Hewlett-Packard CompanyNot Vulnerable18-Apr-2007
HitachiUnknown16-Apr-2007
HyperchipUnknown16-Apr-2007
IBM CorporationUnknown16-Apr-2007
IBM Corporation (zseries)Unknown16-Apr-2007
IBM eServerUnknown16-Apr-2007
Immunix Communications, Inc.Unknown16-Apr-2007
Imperva, Inc.Not Vulnerable16-May-2007
Ingrian Networks, Inc.Unknown16-Apr-2007
Intel CorporationUnknown16-Apr-2007
Internet Security Systems, Inc.Vulnerable16-May-2007
IntotoUnknown16-Apr-2007
IP FilterUnknown16-Apr-2007
Juniper Networks, Inc.Unknown16-Apr-2007
Linksys (A division of Cisco Systems)Unknown16-Apr-2007
Lucent TechnologiesUnknown16-Apr-2007
Luminous NetworksUnknown16-Apr-2007
Mandriva, Inc.Unknown16-Apr-2007
McAfeeVulnerable23-May-2007
Microsoft CorporationNot Vulnerable13-Nov-2007
MontaVista Software, Inc.Unknown16-Apr-2007
Multinet (owned Process Software Corporation)Unknown16-Apr-2007
Multitech, Inc.Unknown16-Apr-2007
NEC CorporationUnknown16-Apr-2007
NetBSDUnknown16-Apr-2007
netfilterUnknown16-Apr-2007
Network Appliance, Inc.Unknown16-Apr-2007
NextHop Technologies, Inc.Unknown16-Apr-2007
NokiaUnknown16-Apr-2007
Nortel Networks, Inc.Unknown16-Apr-2007
Novell, Inc.Vulnerable7-Sep-2007
OpenBSDUnknown14-May-2007
Openwall GNU/*/LinuxUnknown16-Apr-2007
QNX, Software Systems, Inc.Unknown16-Apr-2007
Red Hat, Inc.Unknown16-Apr-2007
Redback Networks, Inc.Unknown16-Apr-2007
Riverstone Networks, Inc.Unknown16-Apr-2007
Secure Computing Network Security DivisionVulnerable1-Aug-2007
Secureworx, Inc.Unknown16-Apr-2007
Silicon Graphics, Inc.Unknown16-Apr-2007
Slackware Linux Inc.Unknown16-Apr-2007
SmoothWallUnknown9-Jul-2007
SnortNot Vulnerable22-May-2007
Sony CorporationUnknown16-Apr-2007
SourcefireNot Vulnerable16-May-2007
StonesoftVulnerable22-May-2007
Sun Microsystems, Inc.Unknown25-Apr-2007
SUSE LinuxUnknown16-Apr-2007
Symantec, Inc.Not Vulnerable24-May-2007
The SCO GroupUnknown16-Apr-2007
TippingPoint, Technologies, Inc.Vulnerable17-May-2007
Trustix Secure LinuxUnknown16-Apr-2007
TurbolinuxUnknown16-Apr-2007
UbuntuUnknown16-Apr-2007
UnisysUnknown16-Apr-2007
Watchguard Technologies, Inc.Unknown16-Apr-2007
Wind River Systems, Inc.Unknown16-Apr-2007
ZyXELUnknown16-Apr-2007

References


http://www.gamasec.net/english/gs07-01.html
http://www.unicode.org/charts/PDF/UFF00.pdf
http://secunia.com/advisories/25285/
http://www.cisco.com/warp/public/707/cisco-sr-20070514-unicode.shtml
http://secunia.com/advisories/25302/
http://www.frsirt.com/english/advisories/2007/1817
http://www.securityfocus.com/infocus/1232
http://xforce.iss.net/xforce/alerts/id/advise68
https://secure-support.novell.com/KanisaPlatform/Publishing/539/3193302_f.SAL_Public.html
http://secunia.com/advisories/26692/
http://secunia.com/advisories/27455/

Credit

This issue was reported by Fatih Ozavci and Caglar Cakici of Gamasec Security.

This document was written by Jeff Gennari.

Other Information

Date Public05/14/2007
Date First Published05/14/2007 01:02:14 PM
Date Last Updated11/15/2007
CERT Advisory 
CVE Name 
US-CERT Technical Alerts 
Metric1.76
Document Revision23

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

 
Page Corner Image
Produced 2007 by US-CERT, a government organization
Disclaimers and copyright information
Get Adobe Reader Get Adobe Reader