ASM - Attack Signature for CVE-2016-6662?

Question

Does the latest Attack Signature database have a Signature for CVE-2016-6662. If so, can someone tell me which attack signature relates to this exploit?
I've been doing some looking around and haven't been able to find any reference to it with regards to ASM yet.&nbsp;
Thanks in advance.&nbsp;

mortoj_167568 · Accepted Answer

Thank you&nbsp;

boneyard · Answer

that CVE was released today, not expecting an official ASM signature update that quick.&nbsp;
don't have time to fully understand the issue, but it seems to require quite some access on either the actual server running mysql or within mysql itself. in general you wouldn't have such access through a website and if you have then you most likely allow such access and a specific signature against is probably difficult to craft.&nbsp;
sure there is sql injection and such, but for that you already have some signatures and again if you are vulnerable for sql injections this is just one of the things they might be able to do.&nbsp;

Forum Discussion

ASM - Attack Signature for CVE-2016-6662?

2 Replies

Recent Discussions

minimum tmos software version for connect CIS (openshift)

Chrome V 124+ on MacOS - Virtual Server Access Issue

F5 Rseries HA

Need advise to setup a policy on F5

F5 Rseries R2600 Tenant sizing

Related Content

Mitigating JSON-based SQL injection with BIG-IP ASM / Advanced WAF Attack Signatures

Wildcard Parameter signature attack

Live Update- ASM attack signatures

Default Attack Signature Sets

The HTTP/2 CONTINUATION frame attack