WAF Rule Set Update Announcement

Name	waf.sig
Version	1.1.143
StoneOS Version	5.5R2-W-1.1 or above, BDS 5.5R8-3.4 or above
Release Date	2022-6-28
New Rules (4)	Rule ID	Rule Name	Rule Details
	1070310156	Java File Upload bypass WAF - multiple semicolon	Click for Details
	1070310157	Java File Upload bypass WAF - double filename	Click for Details
	1070310158	Java File Upload bypass WAF - backslashes in filename	Click for Details
	1060310000	Attempt to access admin console	Click for Details
Updated Rules (31)	Rule ID	Description	Ruel Details
	1000000003	Failed to Parse HTTP Request Body	Click for Details
	1000000005	Unmatched Boundary in Multipart Body	Click for Details
	1000000009	Invalid Use of Identity in Content-Encoding Header	Click for Details
	1000000000	Invalid HTTP Request Line	Click for Details
	1000000008	Missing Content-Length in HTTP 1.x POST Request	Click for Details
	1000000039	HTTP Response Splitting Attack	Click for Details
	1000010002	URL Length Exceeds Threshold	Click for Details
	1000010003	User-Agent Length Exceeds Threshold	Click for Details
	1000010004	Cookie Length exceeds Threshold	Click for Details
	1000010005	The Number of Cookies in HTTP Request Exceeds Threshold	Click for Details
	1000010006	Referer Length Exceeds Threshold	Click for Details
	1000010007	Accept Length Exceeds Threshold	Click for Details
	1000010008	Accept-Charset Length Exceeds Threshold	Click for Details
	1000010009	The Number of Request Headers Exceeds Threshold	Click for Details
	1000010010	Length of HTTP Request Header Name Exceeds Threshold	Click for Details
	1000010011	Length of HTTP Request Header Value Exceeds Threshold	Click for Details
	1000010012	Content-Length Exceeds Threshold	Click for Details
	1000010013	The Number of HTTP Request Parameters Exceeds Threshold	Click for Details
	1000010014	Total Length of Parameters in HTTP Request Exceeds Threshold	Click for Details
	1000010015	The Number of Range Fields Exceeds Threshold	Click for Details
	...