HTTP: URL Overflow
This protocol anomaly triggers when an HTTP request with a URL that exceeds the length threshold is detected. This can be an attempt to overflow the server. Default value: 1024. You can set the HTTP request length threshold to a higher or lower value. In IDP Manager: Select a security policy from Security Policies, then select the Sensor Settings tab. Select Protocol Thresholds and Configuration > HTTP. In Netscreen-Security Manager: In the device navigation tree select Security > IDP SM Settings, then select the Protocol Thresholds and Configuration tab. Under HTTP, click the Show button. Set the Maximum Request length to the new value and click OK.
Extended Description
Any value that exceeds the user defined maximum value is regarded as a protocol anomaly. The impact depends on how an HTTP server responds to the anomaly.
Short Name
HTTP:OVERFLOW:URL-OVERFLOW
Severity
Major
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
CVE-2005-1471 CVE-2007-3614 CVE-2010-2505 CVE-2012-1465 CVE-2013-1605 bid:13524 http
Release Date
08/27/2003
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3703
False Positive
Frequently
CVSS Score
7.5
4.3