TippingPoint IPS before 20070710 does not properly handle a hex-encoded alternate Unicode '/' (slash) character, which might allow remote attackers to send certain network traffic and avoid detection, as demonstrated by a cmd.exe attack.
AV:N/AC:L/Au:N/C:P/I:P/A:P3com Tippingpoint Ips Tos
OS3Com2.12.1.4.63242.22.2.12.2.1.65062.2.22.2.32.2.42.52.5.1Tippingpoint Tipping Point
APPTippingpoint12001200e200200e2400e400505000e600esmsx505x506zpha
Related vulnerabilities
Unspecified vulnerability in TOS 2.1.x, 2.2.x before 2.2.5, and 2.5.x before 2.5.2 on TippingPoint IPS allows ...
TippingPoint IPS running the TippingPoint Operating System (TOS) before 2.2.4.6519 allows remote attackers to ...
TippingPoint Intrusion Prevention System (IPS) TOS before 2.1.4.6324, and TOS 2.2.x before 2.2.1.6506, allow r...
The telnet server for 3Com hardware such as PS40 SuperStack II does not delay or disconnect remote attackers w...
The web management interface in 3Com Wireless 8760 Dual Radio 11a/b/g PoE Access Point allows remote attackers...