Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Signature 5245 "HTTP 1.1 Chunked Encoding Transfer"

Does this signature provide coverage for CVE list candidate CAN-2002-0845?

This CVE number is not referenced in the NSDB description.

1 ACCEPTED SOLUTION

Accepted Solutions
Bronze

Re: Signature 5245 "HTTP 1.1 Chunked Encoding Transfer"

Yes, 5245 should provide coverage for this vulnerability. HTTP chunked encoding is a rarely used feature of the HTTP protocol, so we felt it better to write a generic signature to cover a range of similar buffer overflow problems than to author specific narrow signatures.

1 REPLY
Bronze

Re: Signature 5245 "HTTP 1.1 Chunked Encoding Transfer"

Yes, 5245 should provide coverage for this vulnerability. HTTP chunked encoding is a rarely used feature of the HTTP protocol, so we felt it better to write a generic signature to cover a range of similar buffer overflow problems than to author specific narrow signatures.

105
Views
0
Helpful
1
Replies
CreatePlease to create content