September 10, 2001

Stealth encoding bypasses IDS protection

Author: JT Smith

Reported at The Register: "Cisco's Intrusion Detection System (IDS)is not the only technology that fails to
protect ISS Web servers against stealth unicode attacks.

An advisory by eEye Digital Security, reports that network and server sensors from
ISS, Dragon Sensor 4.x, Snort (prior to version 1.8.1) and components of Cisco
Secure IDS are affected by the issue. Symantec and Network Associates have
stated that their products are not vulnerable."

Category:

  • Linux
Click Here!