SNS IPS: Protocol Alarm

Possible buffer overflow on URL

Description		A URL exceeds the maximum size allowed.

Details		An URL exceeds one of defined limits: length without the query (default: 2048; range: [128,4096]), query length (default: 2048; range: [128,4096]), argument length (default: 1024; range: [128,4096] and argument count (default: 256; range: [128,512]).

Triggering conditions

Complements		The alarm "Possible buffer overflow on URL" has the following complements : "argument" An argument of the URL exceeds the defined length limit. "parameter count" The parameter count exceeds the defined limit. "query" The query exceeds the defined length limit.

References

Available since		ASQ v3.2.0

Protects		Advanced Core Operating System (ACOS) HTTP Requests URI Processing Buffer Overflow Vulnerability D-Link DIR-645 Cross-Site Scripting and Buffer Overflow Vulnerabilities AirLive WL-2600CAM IP Camera Security Bypass Security Issue Nagios history.cgi "get_history()" Buffer Overflow Vulnerability NetDecision Source Code Disclosure and Buffer Overflow Vulnerabilities Simple Web Server Request Handling Buffer Overflow RabidHamster R4 File Disclosure and Buffer Overflow Vulnerabilities Sunway ForceControl SCADA HTTP Request Remote Buffer Overflow Serv-U File Server HTTP Header Remote Buffer Overflow Vulnerability squidGuard URL Processing Multiple Filter Bypass Vulnerabilities httpdx "h_handlepeer()" Function Remote Buffer Overflow Vulnerability MoinMoin Long URL Processing Full Path Disclosure Vulnerability Dreambox DM500 Web Interface Denial of Service Vulnerability HTTrack Long URL Processing Buffer Overflow Vulnerability BEA Weblogic Apache Connector Remote Buffer Overflow Vulnerability Alt-N SecurityGateway "username" Remote Buffer Overflow Vulnerability Orbit Downloader URL Processing Remote Buffer Overflow Vulnerability BakBone NetVault Reporter Scheduler Service Command Execution Vulnerability SAP Message Server HTTP Request Handling Remote Buffer Overflow Vulnerability SAP Web Application Server Internet Communication Manager DoS Vulnerability Apache Tomcat Connector mod_jk Library URL Handling Buffer Overflow Vulnerability

Last 100 CVE		CVE-2012-6096 CVE-2012-1466 CVE-2012-1465 CVE-2012-1464 CVE-2009-4873 CVE-2009-3826 CVE-2009-3711 CVE-2009-3700 CVE-2008-4193 CVE-2008-3936 CVE-2008-3429 CVE-2008-3257 CVE-2008-1602 CVE-2007-3911 CVE-2007-3624 CVE-2007-3615 CVE-2007-0774 CVE-2005-1173

Action

Block

Alarm level

Major