Forum Discussion

bwalters_12787's avatar
bwalters_12787
Icon for Nimbostratus rankNimbostratus
Nov 06, 2013

JBoss Zero Day Security Vulnerability

i am trying to create an irule that will stop the "EJBInvokerServlet" exploit.

 

I am thinking of using an irule that would redirect any queries that involve the invoker path to be redirected to a 404 page.

 

Any help would be greatly appreciated.

 

application delivery
devops
iRules

1 Reply

  • Kevin_Stewart's avatar
    Kevin_Stewart
    Icon for Employee rankEmployee
    Nov 06, 2013

    Try this:

    when HTTP_REQUEST {
    if { ( [HTTP::method] equals "POST" ) and ( [string tolower [HTTP::uri]] contains "/invoker/ejbinvokerservlet" ) } {
        HTTP::respond 404 
    }
}