CVE-2007-2690

Multiple IBM ISS Proventia Series products, including the A, G, and M series, do not properly handle certain full-width and half-width Unicode character encodings, which might allow remote attackers to evade detection of HTTP traffic.

Published: May 16, 2007
Updated: Nov 9, 2025
CVE: CVE-2007-2690
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
iss / proventia_m_series_xpu	1.5	1.5.x
iss / proventia_a_series_xpu	22.2	22.2.x
iss / proventia_m_series_xpu	-	1.9.x
iss / proventia_g_series_xpu	22.5	22.5.x
iss / proventia_m_series_xpu	1.1	1.1.x
iss / proventia_m_series_xpu	1.8	1.8.x
iss / proventia_m_series_xpu	1.6	1.6.x
iss / proventia_a_series_xpu	22.3	22.3.x
iss / proventia_a_series_xpu	-	22.10.x
iss / proventia_g_series_xpu	22.4	22.4.x
iss / proventia_g_series_xpu	22.7	22.7.x
iss / proventia_g_series_xpu	22.2	22.2.x
iss / proventia_a_series_xpu	22.1	22.1.x
iss / proventia_a_series_xpu	22.6	22.6.x
iss / proventia_g_series_xpu	-	22.11.x
iss / proventia_g_series_xpu	22.8	22.8.x
iss / proventia_a_series_xpu	22.4	22.4.x
iss / proventia_g_series_xpu	22.3	22.3.x
iss / proventia_m_series_xpu	1.3	1.3.x
iss / proventia_a_series_xpu	20.11	20.11.x
iss / proventia_g_series_xpu	22.6	22.6.x
iss / proventia_a_series_xpu	22.5	22.5.x
iss / proventia_g_series_xpu	22.1	22.1.x
iss / proventia_m_series_xpu	1.7	1.7.x
iss / proventia_m_series_xpu	1.2	1.2.x
iss / proventia_g_series_xpu	22.9	22.9.x
iss / proventia_g_series_xpu	22.10	22.10.x
iss / proventia_m_series_xpu	1.4	1.4.x

Vulnerability Database

308,677

CVE-2007-2690

Deep Security Visibility Without the Complexity