CVE-2001-0669
First published: Fri Oct 12 2001(Updated: )
Various Intrusion Detection Systems (IDS) including (1) Cisco Secure Intrusion Detection System, (2) Cisco Catalyst 6000 Intrusion Detection System Module, (3) Dragon Sensor 4.x, (4) Snort before 1.8.1, (5) ISS RealSecure Network Sensor 5.x and 6.x before XPU 3.2, and (6) ISS RealSecure Server Sensor 5.5 and 6.0 for Windows, allow remote attackers to evade detection of HTTP attacks via non-standard "%u" Unicode encoding of ASCII characters in the requested URL.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| ISS RealSecure Server Sensor | =5.5 | |
| ISS RealSecure Network Sensor | =6.x | |
| ISS RealSecure Server Sensor | =6.0 | |
| Cisco Catalyst 6000 Intrusion Detection System Module | ||
| Snort Snort | =1.8.1 | |
| ISS RealSecure Network Sensor | =5.x | |
| Cisco Secure Intrusion Detection System | ||
| Enterasys Dragon | =4.x |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- collector/nvd-historical
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/type
- agent/event
- agent/description
- agent/remedy
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/cisco
- canonical/cisco catalyst 6000 intrusion detection system module
- canonical/cisco secure intrusion detection system
- vendor/iss
- canonical/iss realsecure network sensor
- version/iss realsecure network sensor/5.x
- version/iss realsecure network sensor/6.x
- canonical/iss realsecure server sensor
- version/iss realsecure server sensor/5.5
- version/iss realsecure server sensor/6.0
- vendor/snort
- canonical/snort snort
- version/snort snort/1.8.1
- vendor/enterasys
- canonical/enterasys dragon
- version/enterasys dragon/4.x