HTTP: Too many parameters
This protocol anomaly is triggered when it detects an HTTP request with the number of parameters above the pre-set threshold. This threshold can be adjusted in via NSM.
Extended Description
Microsoft ASP.NET is prone to a denial-of-service vulnerability. An attacker can exploit this issue by sending a small number of specially crafted ASP.NET form posts to an affected ASP.NET site. Successful exploits will attackers to disrupt the availability of sites that use ASP.NET
Affected Products
Avaya messaging_application_server,Avaya meeting_exchange
Short Name
HTTP:TOO-MANY-PARAMETERS
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2010-1899 CVE-2011-3414 CVE-2011-4461 CVE-2011-4462 CVE-2011-4815 CVE-2011-4838 CVE-2011-4858 CVE-2011-4885 CVE-2011-5034 CVE-2011-5035 CVE-2011-5036 Collsion Hash bid:51186 bid:51194 bid:51200
Release Date
03/01/2011
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3339
False Positive
Unknown
Vendors
Microsoft
Avaya
CVSS Score
7.8
5.0
4.3