Notes from the field

Writing

Long-form thinking on cyber defence, detection, and resilience — from Slackware-era honeypots through to AI-driven SOC analytics.

Showing posts tagged unicode — 1 result.

MS00-078: the IIS Unicode directory traversal

17 October 2000

Today Microsoft published MS00-078, a directory-traversal vulnerability in IIS exploited via Unicode-encoded URL characters. The bug is exactly the structural pattern I wrote about last year. The exploitation is going to be widespread.

directory traversal iis microsoft unicode vulnerability