Forum Discussion

Altostratus

Aug 30, 2018

Attack Signatures for CVE-2016-1181

I am working with a application team to protect the app from CVE-2016-1181. Did not see any particular attack signatures for this CVE. Really appreciate If you can provide some insight ont...

ASM Advanced WAF

security

samstep

Cirrocumulus

Sep 02, 2018

My understanding is that the exploit code for this CVE was never published and the vendors (like IBM, SAP etc) simply released a patched version and so did Apache.

Theoretically any exploitation will be detected by ASM's many existing Java Code Injection attack signatures and several OS command execution signatures.

If you are working with the app team the best protection is to patch the backend - patches were released long time ago:

https://www.securityfocus.com/bid/91068

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)