1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: HTTP Negative Content Length

Attack: HTTP Negative Content Length

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.


This signature detects a malformed Content-Length header with a negative value.

Additional Information

Web servers expects an integer for the client Content-Length value. Encountering a negative number will result in a denial-of-service attack, or possible buffer overflow conditions, potentially allow remote attackers to execute arbitrary code.


  • Savant Savant Webserver 3.1


Upgrade to the latest version of affected product(s)
Symantec AntiVirus Scan Engine 4.3.12
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube