vulnerability bypass
Sort by: Relevance | Date
%u Encoding IDS Bypass Vulnerability
White Paper Release Date: September 5, 2001 Severity: Medium Description: For an Intrusion Detection system to function properly it must have the ability to be able to decode (break down) various forms of HTTP encoded requests such as UTF and hex encoding. [03 Jul 2008]
Cisco Security Advisory: Cisco Secure PIX Firewall SMTP Filtering Vulnerability
White Paper This vulnerability can be exploited to bypass SMTP command filtering. The PIX is a firewall appliance based on a hardened, specially built operating system, PIX OS, minimizing possible OS-specific security holes. [01 Jul 2008]
Cisco Security Advisory: Cisco Secure Intrusion Detection System Signature Obfuscation Vulnerability
White Paper Intrusion detection systems typically implement obfuscation defense - ensuring that suspect packets cannot easily be disguised with UTF and/or hex encoding and bypass the Intrusion Detection systems. Recently, the CodeRed worm has targeted an... [10 Apr 2008]
Cisco Security Advisory: IOS HTTP Authorization Vulnerability
White Paper When the HTTP server is enabled and local authorization is used, it is possible, under some circumstances, to bypass the authentication and execute any command on the device. Virtually all mainstream Cisco routers and switches running Cisco IOS... [10 Apr 2008]
Hackers foil Windows security check
News Microsoft's efforts to curtail counterfeiting hit a snag when hackers discovered a new way to bypass its Windows Genuine Advantage (WGA), only days after the anti-piracy software's official debut. But within days of the software's release, a number... [01 Aug 2005]
Symantec: Mac OS X a hacker target
News Apple Computer has become a target for new attacks… The appearance of a rootkit109 called Opener in October 2004 serves to illustrate the growth in vulnerability research on the OS X platform… The various OS X vulnerabilities allow attackers to... [21 Mar 2005]
Microsoft denies SP2 flaw is a danger
News Our early analysis indicates that this attempt to bypass these features is not security vulnerability. In an email message to silicon.com's sister site CNET News.com, Microsoft representatives said the company would continue to modify the... [03 Feb 2005]
Windows and Linux exposed by Java flaw
News But the security flaw allows a malicious website accessed through a victim's browser to bypass those protections. The vulnerability, found by Finnish security researcher Jouko Pynnonen in June, was patched last month by Sun, but its details were... [24 Nov 2004]
Microsoft: SP2 download flaw is social engineering
News Microsoft has said it will take "appropriate action" to fix a problem in Internet Explorer and Windows XP SP2 that allows a malicious website to bypass the browser's warnings about downloading potentially harmful content. [23 Nov 2004]
IE security concerns mount up
News Two could be used together to allow malicious content to bypass an mechanism in Microsoft Windows XP Service Pack 2 that alerts people about potentially harmful programs, Secunia stated. The third vulnerability could be used to overwrite the... [18 Nov 2004]
Flaws in XP SP2, Mozilla, Konquerer... you name it...
News According to Secunia's advisory, the second, more serious flaw can bypass the security mechanisms put in place by Microsoft's Windows XP Service Pack 2. The first flaw expands on a drag-and-drop vulnerability found by the researcher in August. [21 Oct 2004]
XP Service Pack 2: First security flaws found
News At this time, [Microsoft's security response centre is] not aware of any instance that attackers could specifically bypass the service through email or a browser. And more revelations about vulnerabilities are on the way, Thor Larholm, senior... [19 Aug 2004]
Microsoft patches Exchange security flaw
News The problem is in a category known as cross-site scripting vulnerabilities, which enable one site with a more lenient security model to be used to bypass another site's more stringent security. The vulnerability revealed in Tuesday's advisory could... [11 Aug 2004]
DNS hack leaves corporate networks wide open
News The same technology that allows web surfers to locate and connect to computers on the internet can be used to create covert communications channels, bypass security measures and store distributed content, according to a security researcher. [02 Aug 2004]
Mac OS security fix fails to plug vulnerabilty
News One allows a website to place a file on the Mac's hard drive when a user clicks on a uniform resource locator, or URL, specifically designed to bypass Mac OS X's security. Richard Forno, a security researcher and the former chief of security for... [26 May 2004]
Keep updated for stories matching vulnerability bypass via RSS
