Deny Rule Group – (default) Encoding and Conversion Exploits in Header Value

ENCONV_HEADER_VALUE

  • Prevents injection of special encoded characters, such as double URL encoded characters in header values.

Included Deny Rules

Rule name

Basic

Standard

Strict

(default 19) MIN_VALUE floating point attack for header values

(default ENC_005b) MIN_VALUE floating point attack in HTTP header value

Icon - ON

Icon - ON

Icon - ON