Unicode Encoding

cardiovascular diabetic autonomic neuropathy automotive chameleon paint changes purple to aqua 1960s american asian civil in right art posters australia autoexecute file john africa move linux antivirus review url asian model petite links asians lip syncing backstreet dancing skeleton life and death in west africa url skywest airline australia sydney australia restaurants pc cillin antivirus updates tiwi islands australia links new orleans asian massage parlors symantec antivirus download african freedom songs african lion feeding habits international fax codes australia africa mountain pictures asian wife pictures africa skin animal auto starting limewire ricambi auto volkswagen tennis australian open schedules lafricain ophthalmic lens in asia animal australia info auto ccd scanning single big day out australia 2005 asian cup 2007 teaching about africa mcaffee antivirus updates asian dust storm james hardie australia domain antivirus software for my macintosh asia girls auto renault australian cricket team 2005 south african association symantec antivirus communications layer failed to initialize quality asian girls tracing mobile phone numbers in australia asian amateurs.com achlasia http://www.textletoouacsi.com

Last revision (mm/dd/yy): //

Description
The attack aims to explore flaws in the decoding mechanism implemented on applications when decoding Unicode data format. An attacker can use this technique to encode certain characters in the URL to bypass application filters, thus accessing restricted resources on the Web server or to force browsing to protected pages.

Examples
Consider a web application which has restricted directories or files (e.g. a file containing application usernames: appusers.txt). An attacker can encode the character sequence Ã¢ÂÂ../Ã¢ÂÂ (Path Traversal Attack) using Unicode format and attempt to access the protected resource, as follows:

Original Path Traversal attack URL (without Unicode Encoding):

http://vulneapplication/../../appusers.txt

Path Traversal attack URL with Unicode Encoding:

http://vulneapplication/%C0AE%C0AE%C0AF%C0AE%C0AE%C0AFappusers.txt

The Unicode encoding for the URL above will produce the same result as the first URL (Path Traversal Attack). However, if the application has an input security filter mechanism, it could refuse any request containing Ã¢ÂÂ../Ã¢ÂÂ sequence, thus blocking the attack. However, if this mechanism doesnÃ¢ÂÂt consider character encoding, the attacker can bypass and access protected resource.

Other consequences of this type of attack are privilege escalation, arbitrary code execution, data modification, and denial of service.

Related Threat Agents

 * Category:Command Execution
 * Category:Information Disclosure

Related Attacks

 * Path Traversal
 * Embedding Null Code

Related Vulnerabilities

 * Category:Input Validation Vulnerability

Related Controls

 * Category:Input Validation