Meeting..Meeting..

Posted by ghimau under
Hah! So bored.. Yesterday aunty virus and I conducted 2 meetings, today we have another meeting with BJ. Damn!

Just imagine, how in the world should I manage my time to do my actual works? Hmm.. The only thing in the magement guys head are, to make sure their work is done in time! But how to do the works if there's no sufficient time?

Tippingpoint?
Got an email today, regarding Tippingpoint vulnerabilities. A remote user can send specially encoded data to avoid detection by the IPS. Specific Unicode encoding for the forward slash character can be used to cause the request to fail to match IPS signatures.

For example. and attacker request a url (iis unicode attack) : http://[target]/scripts/cmd.exe. This request can be easily detected by Tippingpoint. But, when the attacker request a specially encoded data, Tippingpoint would be bypassed. Example request :

http://[target]/scripts%c0%afcmd.exe
http://[target]/scripts%e0%80%afcmd.exe
http://[target]/scripts%c1%9ccmd.exe

Advisories

So admins who are using Tippingpoint, be sure to check your system, and contact the vendor for further action. Prevention is better then cure!

7 comments:

On 13 July 2007 at 10:41 , viruspadu said...

adehhh...
mmg penat meeting nih
lalalala...
tp best jugak ek meeting nih... huhuhu

 
On 13 July 2007 at 12:20 , ghimau said...

malasnya.. malasnya.. malasnya..

 
On 13 July 2007 at 13:15 , nani said...

ehh.. korang..biaselehh..tu baru ckit.sobar jolahh..buat cam kite x suke ape lg cuti lahh..

 
On 13 July 2007 at 15:31 , فيصل said...

cool la.. meeting sekali sekala..
ia dapat merapatkan jurang antara sesama pekerja.

dan bleh gak mengejek sesama sendiri atau orang lain lepas abih meeting..

 
On 16 July 2007 at 10:05 , uNdEraGed gUrL said...

aku suka g meeting.. huaaaaa..
apsal tak hajak haku.. takde la bosan...

 
On 16 July 2007 at 12:56 , ghimau said...

Kalau tak meeting tak ingat dunia.. bilanya masa nak buat kej lain..

 
On 18 July 2007 at 09:41 , alycia said...

ya aku sokong en hakes.. aku walaupun tak masuk meeting.. tp pasal training, smua kejer2 yg sepatutnya tak dpt buat waaaaaaa...