Finjan SurfinGate 7.0 - '.ASCII' File Extension File Filter Circumvention

EDB-ID:

25820

CVE:

N/A




Platform:

Linux

Date:

2005-06-14


source: https://www.securityfocus.com/bid/13959/info

SurfinGate may allow an attacker to circumvent file filters.

It has been reported that an attacker may bypass SurfinGate file filtering rules by using ASCII encoding in the file name.

SurfinGate version 7.0 SP2 and 7.0 SP3 are reportedly vulnerable. Other versions may be affected as well. 

http://www.example.com/ourpics/sware/Mustangworld%2escr