Short Name |
HTTP:EXPLOIT:AMBIG-CONTENT-LEN1 |
---|---|
Severity |
Medium |
Recommended |
No |
Category |
HTTP |
Keywords |
Ambiguous Content Length 1 |
Release Date |
2015/12/23 |
Update Number |
2596 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vsrx-12.1+ |
This signature will detect an HTTP request that has a Content-Length and Transfer-Encoding header. RFC-2616#4.4 specifies that only one of these two headers should be used in an HTTP request.