Author Topic: Did IDP detects PHP version on webserver ?  (Read 1368 times)

foobar47

  • Newbie
  • *
  • Posts: 0
  • Karma: +0/-0
    • View Profile
Did IDP detects PHP version on webserver ?
« on: September 13, 2013, 08:51:55 am »
Hello,
We have IDP250 managed by NSM.

Recently, we add an exempt rule cause "HTTP: PHP php_quot_print_encode Heap Buffer Overflow" block all websites using this function.
What about websites using unaffected PHP version ? (Versions prior to PHP 5.4.16 and 5.3.26 are vulnerable.)

In the same way, IDP block "POP3: Buffer Overflow Username" traffic, but mail server don't use "DeleGate" nor "Hexamail"

I think IDP is blocking legitim traffic.
What can i do for this ?

Thanks.
BR,