Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
632
Views
0
Helpful
0
Replies

BARE BYTE UNICODE ENCODING

edinger1993
Level 1
Level 1

‎05-18-2021 02:01 PM - edited ‎05-18-2021 02:03 PM

[119:4:1] http_inspect: BARE BYTE UNICODE ENCODING [Impact: Potentially Vulnerable] From "GWxxxxxX " SERVER  at Tue May 18 18:45:25 2021 UTC [Classification: Not Suspicious Traffic] [Priority: 3] {tcp} 10.12.3.78:56181 (unknown)->10.12.19.20:80 (unknown)

 

Getting these email alerts back to back. Seems to be coming from a VDI host.

This is a user VLAN in the VDI network. Can't block this connection. Need to dig more into this.

 

Please advise as to what should be the next step from a security prospective. 

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents