This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

OWASP Periodic Table of Vulnerabilities - HTTP Request Splitting

From OWASP

Jump to: navigation, search

Return to Periodic Table Working View

1 HTTP Request Splitting

HTTP Request Splitting

Root Cause Summary

insecure coding/HTTP parsing errors/caching

Browser / Standards Solution

Sanitize HTTP requests and responses

Perimeter Solution

Sanitize HTTP headers
Avoid HTTP connection sharing

Generic Framework Solution

Sanitize HTTP headers

Custom Framework Solution

None

Custom Code Solution

None

Discussion / Controversy

References

HTTP Message Splitting, Smuggling and Other Animals (Amit Klein, OWASP)

Retrieved from "https://wiki.owasp.org/index.php?title=OWASP_Periodic_Table_of_Vulnerabilities_-_HTTP_Request_Splitting&oldid=151724"