Vulnerabilities > ISS

DATE CVE VULNERABILITY TITLE RISK
2001-10-30 CVE-2001-0669 Various Intrusion Detection Systems (IDS) including (1) Cisco Secure Intrusion Detection System, (2) Cisco Catalyst 6000 Intrusion Detection System Module, (3) Dragon Sensor 4.x, (4) Snort before 1.8.1, (5) ISS RealSecure Network Sensor 5.x and 6.x before XPU 3.2, and (6) ISS RealSecure Server Sensor 5.5 and 6.0 for Windows, allow remote attackers to evade detection of HTTP attacks via non-standard "%u" Unicode encoding of ASCII characters in the requested URL.
network
low complexity
cisco iss snort enterasys
7.5
2000-10-20 CVE-2000-0692 Unspecified vulnerability in ISS Realsecure 3.2.1/3.2.2
ISS RealSecure 3.2.1 and 3.2.2 allows remote attackers to cause a denial of service via a flood of fragmented packets with the SYN flag set.
network
low complexity
iss
5.0
2000-06-22 CVE-2000-0562 Unspecified vulnerability in ISS Blackice Agent and Blackice Defender
BlackIce Defender 2.1 and earlier, and BlackIce Pro 2.0.23 and earlier, do not properly block Back Orifice traffic when the security setting is Nervous or lower.
network
low complexity
iss
7.5
1999-02-20 CVE-1999-1168 Unspecified vulnerability in ISS Internet Security Scanner 5.3
install.iss installation script for Internet Security Scanner (ISS) for Linux, version 5.3, allows local users to change the permissions of arbitrary files via a symlink attack on a temporary file.
local
low complexity
iss
7.2