HTTP: Nginx Request URI Verification Security Bypass

This signature detects attempts to exploit a known vulnerability in Nginx. The vulnerability is caused by improper handling of unescaped space characters within URIs. A successful attack could bypass security restrictions in certain configurations.

Extended Description

nginx 0.8.41 through 1.4.3 and 1.5.x before 1.5.7 allows remote attackers to bypass intended restrictions via an unescaped space character in a URI.

Affected Products

Opensuse opensuse

References

CVE: CVE-2013-4547

Short Name
HTTP:NGINX-RQST-URI-SECBYPASS
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Bypass CVE-2013-4547 Nginx Request Security URI Verification
Release Date
02/18/2014
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3435
False Positive
Unknown
Vendors

Opensuse

Suse

F5

CVSS Score

7.5

Found a potential security threat?