Comments (9)
i-rinat
commented on July 28, 2024
1
Oh, so you were asking if that's still an issue for me specifically? If so, then I need to say that I don't use libhtp at the moment. This parsing peculiarity surfaced up when I was evaluating libhtp as a replacement for an in-house security oriented HTTP parser. I don't work on that project anymore, and don't know if they use libhtp or have any code based on libhtp.
from libhtp.
victorjulien
commented on July 28, 2024
I will have a look, thanks.
from libhtp.
catenacyber
commented on July 28, 2024
Is this still an issue ?
from libhtp.
i-rinat
commented on July 28, 2024
Is this still an issue?
The test still fails.
from libhtp.
catenacyber
commented on July 28, 2024
How are you using libhtp ? With Suricata ?
from libhtp.
catenacyber
commented on July 28, 2024
May be still an issue, but likely not for Suricata's usage
from libhtp.
i-rinat
commented on July 28, 2024
but likely not for Suricata's usage
This is a potential bypass vector. Combined with HTTP Parameter Pollution this may be used to feed some innocent parameter values to detectors in Suricata, but allow to pass malicious payloads to the protected application.
from libhtp.
catenacyber
commented on July 28, 2024
This is a potential bypass vector.
Yes, but Suricata does not use libhtp multipart code, and has its own (which had similar bugs fixed recently)
from libhtp.
i-rinat
commented on July 28, 2024
Suricata does not use libhtp multipart code
Oh... okay.
from libhtp.
Related Issues (20)
- Folded header field can be parsed as separate if there are no data available to peek into HOT 1
- Clean up response line vars if htp_treat_response_line_as_body HOT 1
- out of bounds read in authorization digest header parsing HOT 1
- Should Request direction not support Transfer-Coding or Content-Codings? HOT 1
- Is there a procedure for reporting vulnerabilities? HOT 1
- http pipelining is not ok HOT 13
- HTP_AUTH_UNRECOGNIZED for Bearer tokens HOT 7
- htp_connp_(res|req)_data_consumed do not include CONNECT HOT 5
- Bug report on libhtp( AddressSanitizer: SEGV) HOT 6
- Bug report on libhtp( AddressSanitizer: SEGV) HOT 7
- Incomplete but 2 logs for same transaction (libhtp: 0.5.x) HOT 8
- memory leak HOT 2
- Overlapping requests in logs HOT 7
- Response body data buffering and callback bug HOT 2
- may crash HOT 2
- The post request cannot be ended when use filesotre in suricata HOT 7
- double free in multipart processing
- In the case of packet loss, there can be a mismatch between the request and response of a transaction. HOT 1
- Add libhtp to vcpkg HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from libhtp.