Unrated severityNVD Advisory· Published Oct 30, 2001· Updated Apr 16, 2026

CVE-2001-0669

Description

Various Intrusion Detection Systems (IDS) including (1) Cisco Secure Intrusion Detection System, (2) Cisco Catalyst 6000 Intrusion Detection System Module, (3) Dragon Sensor 4.x, (4) Snort before 1.8.1, (5) ISS RealSecure Network Sensor 5.x and 6.x before XPU 3.2, and (6) ISS RealSecure Server Sensor 5.5 and 6.0 for Windows, allow remote attackers to evade detection of HTTP attacks via non-standard "%u" Unicode encoding of ASCII characters in the requested URL.

Affected products

Cisco Systems, Inc./Catalyst 6000 Intrusion Detection System Module
cpe:2.3:a:cisco:catalyst_6000_intrusion_detection_system_module:*:*:*:*:*:*:*:*
Cisco Systems, Inc./Secure Intrusion Detection System
cpe:2.3:a:cisco:secure_intrusion_detection_system:*:*:*:*:*:*:*:*
Iss/Realsecure Network Sensor2 versions
cpe:2.3:a:iss:realsecure_network_sensor:5.x:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:iss:realsecure_network_sensor:5.x:*:*:*:*:*:*:*
- cpe:2.3:a:iss:realsecure_network_sensor:6.x:*:*:*:*:*:*:*
Iss/Realsecure Server Sensor2 versions
cpe:2.3:a:iss:realsecure_server_sensor:5.5:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:iss:realsecure_server_sensor:5.5:*:*:*:*:*:*:*
- cpe:2.3:a:iss:realsecure_server_sensor:6.0:*:*:*:*:*:*:*
Snort/Snort
cpe:2.3:a:snort:snort:1.8.1:*:*:*:*:*:*:*
Enterasys/Dragon
cpe:2.3:h:enterasys:dragon:4.x:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.cisco.com/warp/public/707/cisco-intrusion-detection-obfuscation-vuln-pub.shtmlnvdPatchVendor Advisory
xforce.iss.net/alerts/advise95.phpnvdPatchVendor Advisory
www.kb.cert.org/vuls/id/548515nvdUS Government Resource
marc.infonvd
www.securityfocus.com/bid/3292nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.033
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000