Back to search
CVE-2001-1026
Published: Feb 2, 2002
Modified: Aug 8, 2024
PUBLISHED
Description
Trend Micro InterScan AppletTrap 2.0 does not properly filter URLs when they are modified in certain ways such as (1) using a double slash (//) instead of a single slash, (2) URL-encoded characters, (3) requesting the IP address instead of the domain name, or (4) using a leading 0 in an octet of an IP address.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
content-slash-bypass-filter(6816)
vdb-entry
x_refsource_XF
applettrap-bypass-ip-restrictions(6818)
vdb-entry
x_refsource_XF
applettrap-unicode-bypass-filter(6817)
vdb-entry
x_refsource_XF
3000
vdb-entry
x_refsource_BID
20010709 Various problems in Ternd Micro AppletTrap URL filtering
mailing-list
x_refsource_BUGTRAQ
2996
vdb-entry
x_refsource_BID
applettrap-zero-bypass-restrictions(6819)
vdb-entry
x_refsource_XF
2998
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now