UnicodeIUC20
Program Showcase Registration Accommodation Travel Sponsors
Unicode Standard Conference Board Conference CD Last Conference Past Conferences Next Conference
Abstract

The Microsoft IIS Unicode Flaw

Reinhard Handwerker - Internet Security Systems

Intended Audience: Software Engineers, Webmasters, Systems Administators, Security Administators
Session Level: Intermediate

Since October 2000 the term Unicode is also associated with attacks on web servers and grabbed a foothold in the public's mind. Several exploits of flaws in Microsoft's Internet Information Server (IIS) utilized Unicode encodings, from early directory traversals to Code Red and most recently Nimda. This paper will show in detail the variety of Unicode encodings used in IIS and dissect the anatomy of the exploits. It will highlight the necessity of having knowledge of Unicode encodings to properly address protection against such exploits in intrusion detection systems.


Unicode
When the world wants to talk, it speaks Unicode

UnicodeIUC20
Program Showcase Registration Accommodation Travel Sponsors
Unicode Standard Conference Board Conference CD Last Conference Past Conferences Next Conference
International Unicode Conferences are organized by Global Meeting Services, Inc., (GMS). GMS is pleased to be able to offer the International Unicode Conferences under an exclusive license granted by the Unicode Consortium. All responsibility for conference finances and operations is borne by GMS. The independent conference board serves solely at the pleasure of GMS and is composed of volunteers active in Unicode and in international software development. All inquiries regarding International Unicode Conferences should be addressed to info@global-conference.com.

Unicode and the Unicode logo are registered trademarks of Unicode, Inc. Used with permission.

9 November 2001, Webmaster