Vulnerability Details CVE-2003-0106
The HTTP proxy for Symantec Enterprise Firewall (SEF) 7.0 allows proxy users to bypass pattern matching for blocked URLs via requests that are URL-encoded with escapes, Unicode, or UTF-8.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.8%
CVSS Severity
CVSS v2 Score 7.5
References
- http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0152.html
- http://marc.info/?l=bugtraq&m=104869513822233&w=2
- http://marc.info/?l=ntbugtraq&m=104868285106289&w=2
- http://service1.symantec.com/SUPPORT/ent-gate.nsf/docid/2003032507434754
- http://www.securityfocus.com/bid/7196
- http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0152.html
- http://marc.info/?l=bugtraq&m=104869513822233&w=2
- http://marc.info/?l=ntbugtraq&m=104868285106289&w=2
- http://service1.symantec.com/SUPPORT/ent-gate.nsf/docid/2003032507434754
- http://www.securityfocus.com/bid/7196
Products affected by CVE-2003-0106
-
cpe:2.3:a:symantec:enterprise_firewall:7.0