Forum Discussion

Historic F5 Account

Aug 31, 2011

Latest Apache range headers DOS vulnerability signature suggestion

Hi , You probably heard about this latest Apace DOS vulnerability. http://www.kb.cert.org/vuls/id/405811 Here is a suggestion to add 2 signatures that will block such attack (base...

app sec

BIG-IP Access Policy Manager (APM)

security

BT_90520

Nimbostratus

Oct 07, 2011

There is also a recent enhancement of Killer Apache @ http://www.pentestit.com/killapache-redone-ddos/

Difference Between Old and New Modified Exploit:

< $p = “HEAD / HTTP/1.1rnHost: $ARGV[0]rnRange:bytes=0-$prnAccept-Encoding: gziprnConnection: closernrn”; — > $p = “HEAD “.($ARGV[2] ? $ARGV[2] : “/”).”HTTP/1.1rnHost: $ARGV[0]rnRange:bytes=0-$prnAccept-Encoding: gziprnConnection: closernrn”;

Recent Discussions

Is network access bypassing APM logon pages?
Solved
Sep 16, 2024
ThomasP
<apm_do_not_touch> in JS file failing</apm_do_not_touch>
Sep 16, 2024
Michael_Jenkins
Suddenly Can't access Login Box to F5 LTM Via SSH & GUI
Sep 16, 2024
Gmaster97
LTM + GTM on same box
Sep 16, 2024
AshrafKassem
Application drop down menus does not work behind F5 APM Portal Access
Sep 16, 2024
CANANOZDOGANASLAN

Forum Discussion

Latest Apache range headers DOS vulnerability signature suggestion

Recent Discussions

Is network access bypassing APM logon pages?

<apm_do_not_touch> in JS file failing</apm_do_not_touch>

Suddenly Can't access Login Box to F5 LTM Via SSH & GUI

LTM + GTM on same box

Application drop down menus does not work behind F5 APM Portal Access

Related Content

Windows Critical RCE Vulnerability, Malicious Solana-py, and EDRKillShifter

Coordinated Vulnerability Disclosure: A Balanced Approach

Enhancing Software Security with Rust: A Solution to Common Vulnerabilities

Accellion FTA Vulnerabilities Exploited in APT Attacks - New AWAF Signatures

Support of WAF Signature Staging in F5 Distributed Cloud (XC)