BREACH.HTTPS.Compression.Information.Disclosure
Description
This indicates an attack attempt to exploit an Information Disclosure vulnerability in HTTPS Protocol.
The vulnerability is due to the way the protocol handles compressed HTTPS responses. A remote attacker can exploit this to again access to sensitive information.
Affected Products
Applications that supports HTTP compression
Impact
Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.
Recommended Actions
Refer to the following advisory for mitigation:
http://www.kb.cert.org/vuls/id/987798
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |