Short Name |
HTTP:OVERFLOW:AUTHORIZATION |
---|---|
Severity |
Major |
Recommended |
No |
Category |
HTTP |
Release Date |
2004/02/12 |
Update Number |
1213 |
Supported Platforms |
srx-17.3+, srx-branch-17.4+, vsrx-15.1+, vsrx3bsd-18.2+ |
This protocol anomaly triggers when an HTTP authorization header exceeds the user-defined maximum. The default length is 1024 bytes; you can change this setting in the Sensor Settings Rulebase>Protocol Thresholds and Configuration>HTTP>Maximum Authorization Length.
Receiving such a message may indicate an attack attempt. The impact depends on how an HTTP server handles such a malformed message.