Vulnerability Description
Various Intrusion Detection Systems (IDS) including (1) Cisco Secure Intrusion Detection System, (2) Cisco Catalyst 6000 Intrusion Detection System Module, (3) Dragon Sensor 4.x, (4) Snort before 1.8.1, (5) ISS RealSecure Network Sensor 5.x and 6.x before XPU 3.2, and (6) ISS RealSecure Server Sensor 5.5 and 6.0 for Windows, allow remote attackers to evade detection of HTTP attacks via non-standard "%u" Unicode encoding of ASCII characters in the requested URL.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Catalyst 6000 Intrusion Detection System Module | All versions |
| Cisco | Secure Intrusion Detection System | All versions |
| Iss | Realsecure Network Sensor | 5.x |
| Iss | Realsecure Server Sensor | 5.5 |
| Snort | Snort | 1.8.1 |
| Enterasys | Dragon | 4.x |
References
- http://marc.info/?l=bugtraq&m=99972950200602&w=2
- http://www.cisco.com/warp/public/707/cisco-intrusion-detection-obfuscation-vuln-PatchVendor Advisory
- http://www.kb.cert.org/vuls/id/548515US Government Resource
- http://www.securityfocus.com/bid/3292
- http://xforce.iss.net/alerts/advise95.phpPatchVendor Advisory
- http://marc.info/?l=bugtraq&m=99972950200602&w=2
- http://www.cisco.com/warp/public/707/cisco-intrusion-detection-obfuscation-vuln-PatchVendor Advisory
- http://www.kb.cert.org/vuls/id/548515US Government Resource
- http://www.securityfocus.com/bid/3292
- http://xforce.iss.net/alerts/advise95.phpPatchVendor Advisory
FAQ
What is CVE-2001-0669?
CVE-2001-0669 is a vulnerability with a CVSS score of 7.5 (HIGH). Various Intrusion Detection Systems (IDS) including (1) Cisco Secure Intrusion Detection System, (2) Cisco Catalyst 6000 Intrusion Detection System Module, (3) Dragon Sensor 4.x, (4) Snort before 1.8....
How severe is CVE-2001-0669?
CVE-2001-0669 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-0669?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Catalyst 6000 Intrusion Detection System Module, Cisco Secure Intrusion Detection System, Iss Realsecure Network Sensor, Iss Realsecure Server Sensor, Snort Snort.