Forum Discussion
Allwyn_Mascaren
Cirrus
Mar 19, 2019Disable buffer overflow in json parameters
Hi
In a file upload using api we allow the file name in base64 encoding.
However this triggers the Generic buffer overflow attempt 1 .
As of this post it seems signature at json parameter...
Posted By MiguelArias on 11/15/2010 01:06 AM
2. Description: snmpd[3441]
Syslog Message : error on subcontainer 'ia_addr' insert (-1)
This mensage show every 30 seconds.
this error has been tracked as CR 135440 which will be fixed in TMOS Staging release. it's debug message which will not be visible by default.
- Allwyn_MascarenMar 19, 2019
Cirrus
I tried, the thing is this box with the problem has not updated the ASM signatures.
My lab device with v12 and updated ASM sig does not even have that
buffer overflow sig anymore, but onlyattempt 1
and so on.attempt 27 28
- Lior_Rotkovtic1Mar 19, 2019Historic F5 Account
not even here ? : Security ›› Options : Application Security : Attack Signatures : Attack Signature List
also, try accepitng the request from the request log - where it got block. this should disable the signautre so that it will not block
- Allwyn_MascarenMar 23, 2019
Cirrus
This sig is fired for this one uri in one parameter in json request, the problem with disabling it is it will disable the sig everywhere globally right?
And yes
is not even in the big sig list.Generic buffer overflow attempt 1