HTTP: No Operation Sled in HTTP Request (Malformed)
This signature detects a long string of "No Operation" (NOOP) commands sent in an HTTP request that has been malformed. Some vulnerability testing tools incorrectly send a NOOP sled without completing the request. This is generally a benign request that would not exploit the target. Your server is possibly being probed by a test tool.
Extended Description
Buffer overflow in iMonitor 2.4 in Novell eDirectory 8.8 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via unknown attack vectors.
Affected Products
Novell edirectory
Short Name
HTTP:DOS:NOOP-SLED-REQ-MALF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
(Malformed) CVE-2006-2496 HTTP No Operation Request Sled bid:18026 in
Release Date
11/14/2012
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
srx-branch-12.3
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx-12.3
vmx-19.3
srx-12.3
Sigpack Version
3664
False Positive
Unknown
Vendors
Novell
CVSS Score
10.0