Forum Discussion

Icon for Altostratus rank

Altostratus

Aug 30, 2018

Attack Signatures for CVE-2016-1181

I am working with a application team to protect the app from CVE-2016-1181.

Did not see any particular attack signatures for this CVE.

Really appreciate If you can provide some insight onto it.

ASM Advanced WAF

1 Reply

samstep
Cirrocumulus
Sep 02, 2018
My understanding is that the exploit code for this CVE was never published and the vendors (like IBM, SAP etc) simply released a patched version and so did Apache.

Theoretically any exploitation will be detected by ASM's many existing Java Code Injection attack signatures and several OS command execution signatures.

If you are working with the app team the best protection is to patch the backend - patches were released long time ago:

https://www.securityfocus.com/bid/91068

Welcome! a la Communidad DevCentral LATAM de F5!

LATAM Users Articles

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

DevCentral News

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5