Attack signature Directory Traversal detected in zip upload file

Question

Hello Experts&nbsp;
User is trying to upload the zip file and F5 ASM blocking because its detecting attack signature Directory Traversal in text representation of zip file. Attached is snapshot. &nbsp;
How I can handle this. I do not want to disable on global level.&nbsp;
Regards&nbsp;

ghost-rider_124 · Answer

&nbsp;

ghost-rider_124 · Answer

Any one there?&nbsp;

nathe · Answer

Could you create the parameter which deals with the upload as a "file upload" parameter type and, in addition, disable the attack signature on this parameter?

ghost-rider_124 · Answer

I am sorry for the late reply. I really appreciate if you could tell me what do you mean by parameter deal with upload? How can I know? Every time the violation is coming but not on any particular parameter or wildcard parameter

Forum Discussion

Attack signature Directory Traversal detected in zip upload file

4 Replies

Recent Discussions

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

F5 Access Guard Deprecated: ZTA APM

F5 loadbalancer not working

Pricing when used with aws waf

F5 terminal - help to run commands - disk space full

Related Content

Directory Traversal with Spring MVC on Windows (CVE-2018-1271)

Citrix XenMobile Server– Path Traversal

Support of WAF Signature Staging in F5 Distributed Cloud (XC)

Azure Active Directory and BIG-IP APM Integration

How to ensure source address and source port are accepted and traversed properly via F5 SNAT automap