Signature Detail

Short Name	HTTP:INVALID:HDR-FIELD
Severity	Low
Recommended	No
Category	HTTP
Release Date	2003/08/27
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Invalid Value in Header Field

This protocol anomaly triggers when it detects an HTTP header field with an invalid value, such as a negative content length. This can be an exploit attempt.

Extended Description

A negative Content-Length value in an HTTP request or response should be considered a protocol anomaly. The impact of the protocol anomaly depends on how the web server processes a malformed HTTP message.

References

URL: http://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html

Signature Detail

Short Name

Severity

Recommended

Category

Release Date

Update Number

Supported Platforms

HTTP: Invalid Value in Header Field

Extended Description

References