ModSecurity

mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-16 07:56:12 +03:00

Author	SHA1	Message	Date
ivanr	323f9f81a0	Better discovery of partial quoting evasion.	2007-08-10 14:51:55 +00:00
ivanr	b1949b7ebc	Another check for evasion through partial quoting of multipart boundary.	2007-08-10 14:40:22 +00:00
ivanr	d0ac05c3ea	Add check for evasion using double quote inside multipart boundary.	2007-08-10 14:37:04 +00:00
ivanr	5898e9e116	Fixed a potential segmentation fault, introduced with recent changes.	2007-08-10 14:24:13 +00:00
ivanr	716d0fd419	Added a check for nul bytes in multipart part headers.	2007-08-10 10:17:36 +00:00
ivanr	c85773b343	Added MULTIPART_UNMATCHED_BOUNDARY. Not very reliable, as it detects anything that looks like a boundary, which means any line that begins with -- but we don't think it's a boundary.	2007-08-10 09:59:57 +00:00
ivanr	70324713e4	Added checks to detect quoted boundary evasion (although we are not susceptable any more) and to detect duplicate final bounary.	2007-08-10 08:36:24 +00:00
ivanr	765dfd0274	Fixed typo.	2007-08-09 15:30:47 +00:00
ivanr	c520886e10	Detect and prevent multipart evasion.	2007-08-09 10:50:53 +00:00
ivanr	892938dee4	Enhanced multipart parsing to support quotted boundaries and LF line terminators (RFC demands CRLF but some applications use only LF).	2007-08-06 14:55:18 +00:00
brectanus	81d0f84ad3	Update copyright text to Breach Security, Inc. Merge in changes from branches/2.1.x	2007-06-14 16:05:45 +00:00
brectanus	f4fb4ed4f6	Updates to quiet some compiler warnings.	2007-03-01 11:49:56 +00:00
ivanr	3f80fdac3b	Import ModSecurity 2.1.0-rc7	2007-02-06 12:29:22 +00:00

1 2

63 Commits