Yesterday, NIST released information on a new network exploitable vulnerability in the GNU Bash shell as demonstrated by vectors involving parts of OpenSSH sshd, the mod_cgi, and mod_cgid modules in ...
@Joe, i missed that you answered me, sorry for late feedback.
I´m also thinking of hex ascii characters, so for example using \x28..... would not match the irule.
I´m also thinking about XSS and infect the clients to the "website" and similar attackvectors.
I think we will see quite a lot of new attackvectors in the nearest future.
So decoding I think needs to be used.
Br.
Beinhard