IISProtect Authentication Bypass Vulnerability

A vulnerability has been reported that may allow for iisProtect authentication to be circumvented by web users. It is possible to bypass authentication to gain access to web resources by submitting a request with URL encoded character representations.


 

Privacy Statement
Copyright 2010, SecurityFocus