Versions (3)
Version DetailsCurrent
Rev: 3 • Jul 13, 2013, 12:00 PMET WEB_SERVER HTTP Request Smuggling Attempt - Two Transfer-Encoding Values Specified
alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SERVER HTTP Request Smuggling Attempt - Two Transfer-Encoding Values Specified"; flow:established,to_server; http.header.raw; content:"Transfer-Encoding|3a 20|"; fast_pattern; content:"Transfer-Encoding|3a 20|"; within:100; reference:url,www.owasp.org/index.php/HTTP_Request_Smuggling; classtype:web-application-attack; sid:2017147; rev:3; metadata:created_at 2013_07_13, deprecation_reason Performance, performance_impact Significant, signature_severity Major, updated_at 2024_02_20;)
Jul 13, 2013, 12:00 PM
Feb 20, 2024, 12:00 PM
Sep 21, 2024, 3:00 AM
May 30, 2025, 12:04 AM
rules/emerging-web_server.rules