TippingPoint IPS prior to 20070710 does not properly handle a hex-encoded alternate Unicode '/' (slash) character, which might allow remote malicious users to send certain network traffic and avoid detection, as demonstrated by a cmd.exe attack.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
3com tippingpoint ips tos 2.1 |
||
3com tippingpoint ips tos 2.2.4 |
||
3com tippingpoint ips tos 2.5 |
||
3com tippingpoint ips tos 2.5.1 |
||
tippingpoint tipping point 50 |
||
tippingpoint tipping point 5000e |
||
3com tippingpoint ips tos 2.2.1 |
||
3com tippingpoint ips tos 2.2.1.6506 |
||
tippingpoint tipping point 200 |
||
tippingpoint tipping point 200e |
||
tippingpoint tipping point x505 |
||
tippingpoint tipping point x506 |
||
3com tippingpoint ips tos 2.2.2 |
||
3com tippingpoint ips tos 2.2.3 |
||
tippingpoint tipping point 2400e |
||
tippingpoint tipping point 400 |
||
tippingpoint tipping point zpha |
||
3com tippingpoint ips tos 2.1.4.6324 |
||
3com tippingpoint ips tos 2.2 |
||
tippingpoint tipping point 1200 |
||
tippingpoint tipping point 1200e |
||
tippingpoint tipping point 600e |
||
tippingpoint tipping point sms |
Vulmon