Vulnerabilities > CVE-2006-3652 - Unspecified vulnerability in Microsoft ISA Server 2004
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Microsoft Internet Security and Acceleration (ISA) Server 2004 allows remote attackers to bypass file extension filters via a request with a trailing "#" character. NOTE: as of 20060715, this could not be reproduced by third parties.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- http://securitytracker.com/id?1016506
- http://www.securityfocus.com/archive/1/440105/100/0/threaded
- http://www.securityfocus.com/archive/1/440247/100/0/threaded
- http://www.securityfocus.com/archive/1/440299/100/0/threaded
- http://www.securityfocus.com/archive/1/440446/100/0/threaded
- http://www.securityfocus.com/archive/1/440558/100/0/threaded
- http://www.securityfocus.com/bid/18994