ET WEB_SERVER HTTP Request Smuggling Attempt - Two Transfer-Encoding Values Specified - Suricata Rule 2017147 (et/open)

ET WEB_SERVER HTTP Request Smuggling Attempt - Two Transfer-Encoding Values Specified

SID: 2017147Rev: 32 viewsHistory

Sourceet/open

CreatedJuly 13, 2013

UpdatedFebruary 20, 2024

Classificationweb-application-attack

alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SERVER HTTP Request Smuggling Attempt - Two Transfer-Encoding Values Specified"; flow:established,to_server; http.header.raw; content:"Transfer-Encoding|3a 20|"; fast_pattern; content:"Transfer-Encoding|3a 20|"; within:100; reference:url,www.owasp.org/index.php/HTTP_Request_Smuggling; classtype:web-application-attack; sid:2017147; rev:3; metadata:created_at 2013_07_13, deprecation_reason Performance, performance_impact Significant, signature_severity Major, updated_at 2024_02_20;)

References

url	www.owasp.org/index.php/HTTP_Request_Smuggling

Metadata

created at2013_07_13

deprecation reasonPerformance

performance impactSignificant

signature severityMajor

updated at2024_02_20

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!