Vulnerability Description
Stonesoft StoneGate IPS before 4.0 does not properly decode Fullwidth/Halfwidth Unicode encoded data, which makes it easier for remote attackers to scan or penetrate systems and avoid detection.
CVSS Score
7.1
HIGH
AV:N/AC:M/Au:N/C:N/I:N/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Stonesoft | Stonegate Ips | <= 2.0 |
References
- http://osvdb.org/40627
- http://secunia.com/advisories/27455
- http://www.kb.cert.org/vuls/id/739224US Government Resource
- http://www.kb.cert.org/vuls/id/MIMG-72BRKJ
- http://www.vupen.com/english/advisories/2007/2757
- http://osvdb.org/40627
- http://secunia.com/advisories/27455
- http://www.kb.cert.org/vuls/id/739224US Government Resource
- http://www.kb.cert.org/vuls/id/MIMG-72BRKJ
- http://www.vupen.com/english/advisories/2007/2757
FAQ
What is CVE-2007-5793?
CVE-2007-5793 is a vulnerability with a CVSS score of 7.1 (HIGH). Stonesoft StoneGate IPS before 4.0 does not properly decode Fullwidth/Halfwidth Unicode encoded data, which makes it easier for remote attackers to scan or penetrate systems and avoid detection.
How severe is CVE-2007-5793?
CVE-2007-5793 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-5793?
Check the references section above for vendor advisories and patch information. Affected products include: Stonesoft Stonegate Ips.