Multiple IDS Vendor Encoded IIS Attack Detection Evasion Vulnerability

Multiple IDS Vendor Encoded IIS Attack Detection Evasion Vulnerability

There is no specific exploit code required. An attacker need only modify the desired web attack so that the web requests are encoded with '%u' unicode encoding. An exploit that is designed to trigger this issue, and other issues, in Cisco systems has been supplied by BlackAngels.it.

/data/vulnerabilities/exploits/ciscoMultipleVulnsExploit.pl