WAF 381203

From Atomicorp Wiki
Jump to: navigation, search

Rule ID

381203

Status

Active rule currently published.

Alert Message

Atomicorp.com WAF Rules - Virtual Just In Time Patch: TimThumb Non Image Upload Attempt

Description

This rule detects and blocks attempts to upload non image files via the Timthumb extension. These types of attacks attempt to use timthumb to upload non-image content to the system, such as malicious software. This rule blocks these attempts.

False Positives

None.

It is not recommended that you disable this rule if you believe you have a false positive. If you believe this is a false positive, please report this to our security team to determine if this is a legitimate case, or if its clever attack on your system. Instructions to report false positives are detailed on the Reporting False Positives wiki page. If it is a false positive, we will fix the issue in the rules and get a release out to you promptly.

Tuning Guidance

None.

Similar Rules

None.

Knowledge Base Articles

None.

Outside References

None.

Personal tools