[Snort-users] CGI Null Byte Attack

Len Burns lenb at ...750...
Mon Nov 20 18:37:12 EST 2000


Hi,

I saw this in ACID under unique alerts, and am having a bit of trouble
tracking down info about it.
spp_http_decode: CGI Null Byte attack detected 30 (2%) 1 1 1
What I am looking for is a way to verify whether this is of concern,
or if not what might be triggering it.  Thanks in advance for any
pointers.

-Len




More information about the Snort-users mailing list