• info
• discussion
• exploit
• solution
• references

Access Manager CVE-2007-3570 Security Bypass Vulnerability

Access Manager is prone to a security bypass vulnerability. The Linux Access Gateway in Novell Access Manager before 3.0 SP1 Release Candidate 1 (RC1) allows remote attackers to bypass unspecified security controls via Fullwidth/Halfwidth Unicode encoded data in a HTTP POST request.