ET WEB_SERVER HTTP Request Smuggling Attempt - Double Content-Length Headers - Suricata Rule 2017146 (et/open)

ET WEB_SERVER HTTP Request Smuggling Attempt - Double Content-Length Headers

SID: 2017146Rev: 44 viewsHistory

Sourceet/open

CreatedJuly 13, 2013

UpdatedFebruary 20, 2024

Classificationweb-application-attack

alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SERVER HTTP Request Smuggling Attempt - Double Content-Length Headers"; flow:established,to_server; http.header.raw; content:"Content-Length|3a 20|"; fast_pattern; content:"Content-Length|3a 20|"; within:100; reference:url,www.owasp.org/index.php/HTTP_Request_Smuggling; classtype:web-application-attack; sid:2017146; rev:4; metadata:created_at 2013_07_13, deprecation_reason Performance, performance_impact Significant, signature_severity Major, updated_at 2024_02_20;)

References

url	www.owasp.org/index.php/HTTP_Request_Smuggling

Metadata

created at2013_07_13

deprecation reasonPerformance

performance impactSignificant

signature severityMajor

updated at2024_02_20

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!