CVE-2007-2734

Published May 16, 2007

Last updated 6 years ago

CVSS info 7.5

Overview

Description: The 3Com TippingPoint IPS do not properly handle certain full-width and half-width Unicode character encodings in an HTTP POST request, which might allow remote attackers to evade detection of HTTP traffic.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:3com:3crtpx505-73:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "95D2832C-ABB1-471C-9BBF-FD02DF937CB8"
          },
          {
            "criteria": "cpe:2.3:h:3com:3crx506-96:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C638E694-5A18-4D06-8810-633819C47231"
          },
          {
            "criteria": "cpe:2.3:h:3com:tippingpoint_200:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A351AE89-754D-4170-BC4E-CD2C8262824B"
          },
          {
            "criteria": "cpe:2.3:h:3com:tippingpoint_200e:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D28E50D-36E0-485E-AA78-7D7520FBFC2B"
          },
          {
            "criteria": "cpe:2.3:h:3com:tippingpoint_2400e:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "60660614-196A-4F80-B21E-2FE41ACAA69D"
          },
          {
            "criteria": "cpe:2.3:h:3com:tippingpoint_50:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BF5ED78C-D90E-4921-893D-D5877BA2E170"
          },
          {
            "criteria": "cpe:2.3:h:3com:tippingpoint_5000e:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C7CBF1D4-5446-4900-90E1-722DE3A19D20"
          },
          {
            "criteria": "cpe:2.3:h:3com:tippingpoint_600e:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5A8D2B29-E70D-4B2F-AB23-46AB3263FD6B"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References