Difference between revisions of "WAF 300114"

From Atomicorp Wiki
Jump to: navigation, search
(Created page with "'''Rule ID''' 300114 '''Alert Message''' Atomicorp.com WAF Rules: HTTP Smuggling Attack: Inconsistent Content-Length and Transfer-Encoding headers detected HTTP Smuggli...")

Revision as of 13:54, 1 August 2024

Rule ID

300114

Alert Message

Atomicorp.com WAF Rules: HTTP Smuggling Attack: Inconsistent Content-Length and Transfer-Encoding headers detected

HTTP Smuggling Attack.

Description

This rule detects if Content-Length and Content-Encoding chunked or identity type headers are set on a request. There is no legitimate traffic that uses this method, this is an attack.

False Positives

There are no known False Positives for this.

If you believe this is a false positive, it is recommended that you report this to our security team can determine if this is a legitimate case, or if its clever attack on your system. Instructions to report false positives are detailed on the Reporting False Positives wiki page.

Similar Rules

WAF_340113

WAF_340112

WAF_340113

WAF_340111

Outside References

Retrieved from "https://wiki.atomicorp.com/wiki/index.php?title=WAF_300114&oldid=6920"
Personal tools