Daniel Schrã¶Ter

**Name of the Vulnerable Software and Affected Versions** Finjan SurfinGate versions 7.0SP2 through 7.0SP3 **Description** The issue allows remote attackers to download blocked files by utilizing hex-encoded characters in a filename. This can be achieved by using characters such as `%2e`. **Recommendations** For Finjan SurfinGate versions 7.0SP2 through 7.0SP3, consider restricting access to file downloads until a patch is available. As a temporary workaround, avoid using hex-encoded characters in filenames to minimize the risk of exploitation.