Advertisement
keeganjacobson

stop_range_CVE-2015-1635

Apr 16th, 2015
223
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
TCL 0.45 KB | None | 0 0
  1. ##############################################
  2. # Name: stop_range_CVE-2015-1635
  3. # Description: This iRule will remove the Range header when detecting large ranges in it.
  4. ##############################################
  5. when HTTP_REQUEST {
  6. # remove Range requests for CVE-2015-1635 if the request uses large ranges
  7. if { ([HTTP::header exists "Range"]) and ([HTTP::header "Range"] matches_regex {bytes\s*=.*([0-9]){10,}.*})}
  8. {
  9. HTTP::header remove Range
  10. }
  11. }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement