User-agent information

Similar Messages

• Verify if website use user agent information

  i want to connect to a website, using  different browser but i think this website use user agent information because when using blackberry browser ; the website close the connection /Session after i have been log. 
  So i want to use the user agent switcher plug in that could be use with mozilla firefox but i don't know which values i have to use to make mozilla behave like a blackberry browser even if i go to some website that show my browser setting ( http://www.spyber.com/ )
  mozilla plug ask thoses values
  Description ,User Agent:, App Name, App Version, Platform, vendor , Vendor Sub :
  spyber show this parameters:
  Your user agent, Your Browser, Screen information, Screen resolution,Color depth, Javascript check
  As i see i can not customize /change colorDepth and screen resolution in mozilla plug in so change user agent could not be efficient if the website ask for this value .
  so
  1) is there a way to use PC browser and change all meta data that a browser send to the webserver ?
  2) where i could find all the value for a my blackberry device ?
  thank's for any helps 

  @michel45
  I have a similar question here:
  http://supportforums.blackberry.com/t5/Web-and-WebWorks-Development/I-have-a-User-Agent-value-what-i...
  Did you ever figure out all of the correct values?
  --Todd
  Windows 7 Enterprise 64-bit (6.1 Build 7600) | Java SE Runtime Environment (build 1.6.0_24-b07) | Eclipse Version: 3.6.2 [M20110210-1200] | BlackBerry Eclipse Plug-in: 1.3.0.201102031007-19 | Java Compiler level: 1.3 | Targeting devices running OS 5 | Simulators: JDE 5.0 packaged 9700, 9630, 9300

• Submit Referrer and User Agent via URL(Connection)?

  Hi,
  I retrieve some data via http using a URL (and a URLConnection) class. When I check the logfiles, the user agent information submitted by this connection is the name of the JRE-version.
  So my question is: how can I submit custom user agent (and referrer) information? Possibly using the output-methods of a URLConnection?
  kind regards
  Oxy

  urlconn.setRequestProperty("referer","www.domain.com");
  urlconn.setRequestProperty("user-agent","Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0");

• ISE 1.2 Profiling - User Agent attribute incorrect

  Hi all,
  Just troubleshooting some profiling issues and have found that multiple devices are profiling incorrectly eg MAC OSX profiling as Apple-Device. Basically the issue is the user-agent string profiled by ISE is incorrect meaning that only the OUI is matched. During the BYOD onboarding process, non Internet Browser, applications and services (games and OCSP Daemons etc) are presenting their specific user-agent strings eg "OCSPD\1.0.2" to ISE resulting in incorrect profiling.
  Does anybody have any suggestions on how to resolve this issue as it is resulting in about 50% of devices been profiled at the "top level" ie Apple-Device or Windows Workstation (anything based on User-Agent). Can any one explain whether profiler works on the basis of first agent received, last agent received and why it doesn't hold onto a list of presented agents to make a decision? In my mind this is a pretty big issue in that some of the more popular device profiling policies are based on a user-agent string thus potentially preventing you from defining tight Authz policies eg IPAD only etc

  "Unless you have suppression configured, ISE will continue to collect profiling data and will re-profile a device as long as a rule with higher certainty factor is hit. However, if the certainty factor is the same the device will remain at its originally profiled group."
  The suppression feature will not affect the re-profiling of a device.  The suppression only affects the logging on the MnT node.  Since the Profiling is a PSN function the suppression has no affect on the outcome of a profiling event. 
  You are correct in that a rule with a higher certainty factor "wins" and this is the profile that is chosen.  Again, an understanding of how profiles work is not the issue here.  
  For example say only the RADIUS and HTTP probes are being utilized for an endpoint.  There are two endpoints one is a iPad and the other an iPhone.  The endpoint attributes that are known about the device are the MAC OUI and the useragent. 
  Based on the default profiling rules there are two three things that need to be identified either an iPhone or an iPad.  The first common item is that the MAC OUI is identified as apple.  This increases the certainty factor by 10.  The second is either the HTTP User agent containing either iPad/iPhone or the DHCP hostname containing either iPad/iPhone.  Both of those conditions would increase the certainty factor by 20 for a total of 30.  Since DHCP is not being used in this example we can remove that for a possibility and say that for an iPhone to be profiled as an iPhone it must both have a MAC OUI of apple and the useragent must contain iPhone.  Same goes for iPad, but iPad in the useragent. 
  Like smcbridebpc stated every application that uses HTTP will have a useragent string.  The profiler rules assume that the useragent that is being used contains either the word iPhone or iPad to distinguish these types of devices.  If an application on the device sends a useragent string such as  "OCSPD\1.0.2" which is obviously the OCSP Daemon.  This useragent string is "stuck" on the endpoint and no other usable useragents can be used to profile the device.  Therefore a race condition exists and depending on the application that wins determines if the profiler will be accurate or not.   
  The only two solutions that I can think of would be to have a useragent filter that would allow you to manually filter out useragents like "OCSPD\1.0.2" (or the ISE developers could filter known unusable user agents out on the backend)  OR everytime a new useragent is presented to the profiler for a device the useragent is joined to a list of useragents. 
  If the useragent was overwritten everytime a new useragent was presented then it would cause the device to be reclassified everytime the different applications presented useragents which would not be good.  
  It does look like a bug may have been filed and marked as fixed in release pending, but the bug notes do not list enough information to identify if this is the same issue that we are seeing.
  https://tools.cisco.com/bugsearch/bug/CSCuj45373

• The User-Agent "Java/1.5.0_06" is unknown;creating an agent with null agent

  Hello,
  We're currently on JDeveloper 10.1.3.4.0.4270. We just release a new version of our web app into production. This is an internal web application. application server is weblogic 10. The weblogic log is showing alot of these warning messages. I tried search on this forum and in google but unable to find any information. I really appreciate if anyone has any idea what could be causing these warning. Our users are constantly getting sent back to the login page to to user sessions lost.
  <Jun 8, 2010 12:39:20 AM EDT> <Info> <Common> <BEA-000628> <Created "5" resources for pool "venusDS", out of which "5" are available and "0" are unavailable.>
  Jun 8, 2010 12:39:20 AM oracle.adfinternal.view.faces.agent.AgentFactoryImpl _populateNullAgentImpl
  WARNING: The User-Agent "Java/1.5.0_06" is unknown; creating an agent with null agent attributes.
  Jun 8, 2010 12:39:20 AM oracle.adfinternal.view.faces.agent.AgentFactoryImpl _populateNullAgentImpl
  WARNING: The User-Agent "Java/1.5.0_06" is unknown; creating an agent with null agent attributes.
  Jun 8, 2010 12:39:21 AM oracle.adfinternal.view.faces.agent.AgentFactoryImpl _populateNullAgentImpl
  WARNING: The User-Agent "Java/1.5.0_06" is unknown; creating an agent with null agent attributes.
  Jun 8, 2010 12:39:21 AM oracle.adfinternal.view.faces.agent.AgentFactoryImpl _populateNullAgentImpl
  WARNING: The User-Agent "Java/1.5.0_06" is unknown; creating an agent with null agent attributes.
  Jun 8, 2010 12:42:21 AM oracle.adfinternal.view.faces.agent.AgentFactoryImpl _populateNullAgentImpl
  WARNING: The User-Agent "Java/1.5.0_06" is unknown; creating an agent with null agent attributes.
  Jun 8, 2010 12:42:21 AM oracle.adfinternal.view.faces.agent.AgentFactoryImpl _populateNullAgentImpl
  WARNING: The User-Agent "Java/1.5.0_06" is unknown; creating an agent with null agent attributes.
  Jun 8, 2010 12:42:21 AM oracle.adfinternal.view.faces.agent.AgentFactoryImpl _populateNullAgentImpl
  WARNING: The User-Agent "Java/1.5.0_06" is unknown; creating an agent with null agent attributes.
  1698656.832: [GC [PSYoungGen: 145280K->5811K(187264K)] 418915K->302441K(650112K), 0.1285455 secs]
  Jun 8, 2010 12:42:22 AM oracle.adfinternal.view.faces.agent.AgentFactoryImpl _populateNullAgentImpl
  WARNING: The User-Agent "Java/1.5.0_06" is unknown; creating an agent with null agent attributes.
  Thanks,
  Joe

  Hi,
  user agent is the browser users use. So what is the browser ?
  Frank

• Creative Cloud User Agent String spoofing old Chrome Browser?

  Was troubleshooting Creative Cloud not working on our network and noticed it is spoofing an old Chrome browser User Agent String.
  When Creative Cloud launches it presents itself as: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.22 (KHTML, like Gecko) Chrome/25.0.1364.68 Safari/537.22
  This is the user agent string of Google Chrome version 25 (Chrome is currently at version 32)
  Looking for any information on why Creative Cloud is using an old Chrome user agent string, and why can't it use a unique user agent?

  Creative Cloud chat support (all Creative Cloud customer service issues)
  http://helpx.adobe.com/x-productkb/global/service-ccm.html

• How to retrieve which user-agent in a java portlet?

  Is there a way to get http user-agent info about which browser requested a page with a portlet from within the java portlet?
  It seems like the request.getHeader() always returns the same value no matter what browser we use.
  Have also tried portletRenderRequest.getOriginalHeader() but this method also returns the same result.
  Does the PPE replace these headers or what..?
  Regards,
  Per A Jorgensen

  Hi Per A Jorgensen,
  I see what you mean. I just deployed a simple portlet which displays the user-agent header property.
  Here are my observations:
  1. If you access the page as user1 from Mozilla, I see the following:
  Browser Agent:      Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.8) Gecko/20050511 RPT-HTTPClient/0.3-3 RPT-HTTPClient/0.3-3
  2. If I now access this page from IE, as user1, then I still see my browser agent as:
  Browser Agent:      Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.8) Gecko/20050511 RPT-HTTPClient/0.3-3 RPT-HTTPClient/0.3-3
  3. If I now access this page from IE, as user2, then i see the following details:
  Browser Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) RPT-HTTPClient/0.3-3 RPT-HTTPClient/0.3-3
  4. Now I access the same page from Mozilla (after logging out of user1) as user2, I see the following:
  Browser Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) RPT-HTTPClient/0.3-3 RPT-HTTPClient/0.3-3
  Hmm.. interesting.. it looks like, whoever access the provider first, fixes the user-agent. I need to investigate more into it to find out information as to why this is happening.
  In the mean-time, you can be rest assured that as long as you dont have multiple user's accessing the portlet as the same user, you will get the correct information.
  thanks,
  Harsha

• Content repository FD does not exist :user agent sap web application server

  Hi All
  i am using 3rd party software(dms SERVER) and connecting it using archive link interface SAP HTTP 4.5 AL
  i have created a new repository with name FD using tcode OAC0.when i give inputs in OACO and click on test connection it gives me information Content repository FD does not exist
  here is my HTTP trace at receiver content server side
  TRACE:(5) - GET /Default.aspx?serverInfo&pVersion=0045&contRep=FD HTTP/1.0
  TRACE:(5) - user-agent: SAP Web Application Server (1.0;700)
  TRACE:(5) - host: SERVERIP:PORT
  TRACE:(5) - accept-encoding: gzip
  TRACE:(5) -
  --> C05 --> S06 ==== (15.583) Request <GET /Default.aspx?serverInfo&pVersion=0045&contRep=FD HTTP/1.0>
  --> C05 --> S06 GET /Default.aspx?serverInfo&pVersion=0045&contRep=FD HTTP/1.0
  --> C05 --> S06 user-agent: SAP Web Application Server (1.0;700)
  --> C05 --> S06 host: SERVERIP:PORT
  --> C05 --> S06 accept-encoding: gzip
  --> C05 --> S06 ==== Body 0 bytes
  --> C05 --> S06 Body =>
  Sockets 6 of 4,5,6 need checking ####
  TRACE:(6) - HTTP/1.1 200 OK
  TRACE:(6) - Cache-Control: private
  TRACE:(6) - Content-Length: 189
  TRACE:(6) - Content-Type: text/plain; charset=utf-8
  TRACE:(6) - Server: Microsoft-IIS/7.5
  TRACE:(6) - X-AspNet-Version: 2.0.50727
  TRACE:(6) - boundary:
  TRACE:(6) - X-dateC: 2010-10-22
  TRACE:(6) - X-timeC: 07:07:23
  TRACE:(6) - X-dateM: 2010-10-22
  TRACE:(6) - X-timeM: 07:07:23
  TRACE:(6) - X-contentRep: FD
  TRACE:(6) - X-numberComps: 1
  TRACE:(6) - X-docId: 0
  TRACE:(6) - X-docStatus: online
  TRACE:(6) - X-pVersion: 0045
  TRACE:(6) - X-ContentServer: contentServer=Server ip;contentServerPort='9025;pVersion='0045';id='DMSSRV1'
  TRACE:(6) - X-Powered-By: ASP.NET
  TRACE:(6) - Date: Fri, 22 Oct 2010 13:37:23 GMT
  TRACE:(6) - Connection: close
  TRACE:(6) -
  TRACE:(6) - serverType='DMSSRV1';1;serverVersion=12;serverPatch=0;serverBuild=180;pVersion='0045';serverStatus=running;serverStatusDescription=;serverDate='2010-10-22';serverTime='07:07:23';startUpDate='2010-10-22';startUpTime='07:07:23';lastAccessDate='2010-10-22';lastAccessTime='07:07:23';contRep='FD';contRepStatus=defined;contRepStatusDescription=;contRepDescription=Content-Repository Test;contentStorageHost=localhost;contentStorageName=FD;secKeyVerification=y;defaultDocProt=rucd;
  one change which i have observed in this trace is .. this trace is showing trace agent as SAP Web application server ... ideally it should show user agent :SAP HTTP
  Please suggest me some solution.
  Thanks
  sandeep

  Dear all,
  my issue is resolved.I solved my issue myself
  solution: SAP sends HTTP request in the form of URL like
  http://serverip:port/GET /Default.aspx?serverInfo&pVersion=0045&contRep=FD HTTP/1.0
  Now your response should contain string  contRep="FD"
  dont forget double quotes on repository name coz SAP program matches string with double quotes. if you will return value like this contRep=FD
  this will through error.
  Thanks
  sandeep sharma

• Bad http.agent in Java properties : a bug in the HTTP user-agent string?

  Hi all,
  Me :
  I'm patching AWSTATS (web log analyzer tool) in order to recognize which Java version has
  been used to download files.
  Context of the problem :
  Each time a Java program (or applet) is downloading a file (for example .class, .png, .html)
  from a web server, a line will be added in the web server log file. If the web server is well
  configured, the user agent used to download the file will be at the end of the line in the log file.
  For Sun Java JVM, the user agent string is configured in the Java properties under "http.agent".
  Usually, the user-agent string contains the word "Java" and the virtual machine version. In most
  cases, this is just a string like "Java/1.4.2", so this is relatively easy to parse.
  Problem :
  Looking in my web server stats, and then on the web, I found that a JVM's user-agent is
  "Mozilla/4.0 (Windows XP 5.1)", which obviously does not contains the word "Java".
  Consequently, it is difficult to say that this user-agent string belongs to a JVM.
  Further look in my log files and on google shows that this http.agent string appears
  on Microsoft Internet Explorer (it seems MSIE 6.0) over Windows XP with the J2RE plugin:
  http://board.gulli.com/thread/300321
  http://forum.java.sun.com/thread.jsp?thread=531295&forum=30&message=2559523
  http://forum.java.sun.com/thread.jsp?forum=63&thread=132769&start=210&range=15&tstart=0&trange=15
  http://forum.java.sun.com/thread.jsp?forum=32&thread=480899
  http://www.goodidea.ru/setupJava/javaInstall.htm
  The J2RE plugin version does not seems to play a role as this user-agent string has
  been seen on 1.4.1_02-b06, 1.4.2_01, 1.4.2_03 and 1.4.2_04-b05.
  Further information requested :
  I would like to know:
  1) if you have reported the same problem;
  2) if there is some rules for the http.agent property;
  3) if this is a bug.
  Thank you very much, and feel free to add you opinion.
  Julien

  The web log files where the "Mozilla/4.0 (Windows XP 5.1)" user-agent appears can be displayed using the following search terms on google :
  "Mozilla/4.0 (Windows XP 5.1)" -"(Windows XP 5.1) Java"
  http://www.google.ch/search?hl=fr&ie=UTF-8&q=%22Mozilla%2F4.0+%28Windows+XP+5.1%29%22+-%22%28Windows+XP+5.1%29+Java%22&btnG=Rechercher&meta=
  Julien

• User Agent issue - Always defaults to non-Safari user

  If I try to access my www.me.com site, I am told I am using an unsupported browser. However, I am using Safari 5.0.3 on a mac running 10.6.5. When this happens, I have to go to Safari Prefs/Advanced and activate the Developer Menu, then choose either Safari 5 on a mac or the top choice, Default. Then it will recognize the browser correctly.
  Yet, if I open a new tab or window, the user agent pops back to an old Mozilla string and I again cannot access pages correctly.
  Is there a way to force Safari to report itself correctly, or perhaps there are files in the library somewhere that need to be deleted and rewritten by Safari to get out of this loop?
  Thanks!
  Hopa

  Hi,
  on a mac running 10.6.5.
  www.me.com site
  Update your system software. v10.6.6 is available. Very important to keep your software up to date if you have a MobileMe account.
  Click the Apple () menu (top left in your screen) Software Update ...
  Then repair permissions.
  Launch Disk Utility. (Applications/Utilities) Select MacintoshHD in the panel on the left, select the FirstAid tab. Click: Repair Disk Permissions. When it's finished from the Menu Bar, Quit Disk Utility and restart your Mac. If you see a long list of "messages" in the permissions window, it's ok. As long as you see, "Permissions Repair Complete" when it's finished... you're done.
  If you see any warnings re: SUID messages, they can be safely ignored, information here: http://support.apple.com/kb/TS1448?viewlocale=en_US

  Restart your Mac then navigate to your .me account.
  Carolyn

• Firefox 3.6.13 ajax setRequestHeader('User-Agent', '...') don't work

  I did a javascript and in new Firefox version (3.6.13) don't overwrite the "User-Agent" Header in XMLHttpRequest.
  Is this a new security feature? :S
  The code:
  <pre><nowiki>jQuery.ajax({
  beforeSend: function(xhr){xhr.setRequestHeader('User-Agent', '...');},
  url: "...",
  dataType: 'xml',
  success: ...
  });</nowiki></pre>

  I contacted Mozilla support for information on this bug, and they were completely useless.
  I have searched and searched for more information on this bug, and this is about the only place I found this problem reported. I went into Bugzilla and searched Firefox bugs, and there is nothing about this problem.
  So I have opened a new bug against Firefox to get this fixed -- https://bugzilla.mozilla.org/show_bug.cgi?id=627942
  Please who are hampered by this stupid bug in Firefox can follow and comment on that bug.

• Retrive  User & Cookie Information Using Apache Access Log Files

  Hi All
  The following information are not showing under Apache access log files that is used with Oracle Appserver (10g 10.1.2) given below.
  1)User Informations
  2)Cookie Informations
  We are using below Commands in the httpd.conf File that have specified in the documents link given below
  http://download-west.oracle.com/docs/cd/B31017_01/web.1013/q20201/logs.html#accesslog
  LogFormat "%h %l %u %t \"%r\" %>s %b %v \"%{Referer}i\" \"%{User-Agent}i\" \"%{cookie}n\"" combined
  Please anyone can tell what are the necessary informations that we have to specified in the httpd.conf file to retrive Cookie and user Informations.
  Thanks to all
  Sona

  Thanks for your reply
  Can u please check the below link for the cookie flag information
  http://download-west.oracle.com/docs/cd/B31017_01/web.1013/q20201/mod/mod_usertrack.html
  For your information i have logged in already.
  Our Sample O/p is given below
  151.146.191.186 - - [28/Dec/2006:10:13:05 +0530] "GET /Tab_files/lowerbox.gif HT
  TP/1.1" 200 150 - "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows)"
  We are using the below command format
  LogFormat "%h %l %u %t \"%r\" %>s %b %{cookie}n \"%{Referer}i\" \"%{User-Agent}i\"" combined
  But User and Cookie informations is not displaying.
  what steps should i follow.
  Looking for the favourable reply
  Thanks

• Cfhttp user-agent question

  I'm trying to get some information off a page. The info I
  want is on:
  https://www.memberst.com/Programs/SessionDetails.aspx?id=A00277BF-262C-4C2A-8FAA-58AAB8465 589&sid=601275
  and its the section that says x of 10 (last I checked it said
  8 of 10).
  I'm using the following code:
  cfhttp method="get"
  url="https://www.memberst.com/Programs/SessionDetails.aspx?id=A00277BF-262C-4C2A-8FAA-58A AB8465589&sid=601275"
  useragent="Mozilla/4.0">
  </cfhttp>
  <cfset txt=cfhttp.FileContent>
  <cfset re = ([-+]?\d+).*?(of).*?(10)>
  <cfset m = #REFindNoCase(#re#,#txt#,1,"TRUE")#>
  <cfif #ArrayLen(m.pos)# gt 1>
  <cfset int1=#Mid(txt,m.pos[2],m.len[2])#>
  <cfset word1=#Mid(txt,m.pos[3],m.len[3])#>
  <cfset int2=#Mid(txt,m.pos[4],m.len[4])#>
  <cfoutput>
  (#replace(int1,"<" ,"&lt;")#)(#replace(word1,"<"
  ,"&lt;")#)(#replace(int2,"<" ,"&lt;")#)
  </cfoutput>
  </cfif>
  But it seems that the cfhttp is not using the user-agent, as
  I get back
  10px; when I dump out 1 of the locations......
  Any suggestions??

  Anyone have any ideas??? Thoughts??
  "Steve Grosz" <[email protected]> wrote in
  message
  news:fe3jd7$6nl$[email protected]..
  > I'm trying to get some information off a page. The info
  I want is on:
  >
  https://www.memberst.com/Programs/SessionDetails.aspx?id=A00277BF-262C-4C2A-8FAA-58AAB846 5589&sid=601275
  >
  > and its the section that says x of 10 (last I checked it
  said 8 of 10).
  >
  > I'm using the following code:
  >
  > cfhttp method="get"
  >
  url="https://www.memberst.com/Programs/SessionDetails.aspx?id=A00277BF-262C-4C2A-8FAA-58A AB8465589&sid=601275"
  > useragent="Mozilla/4.0">
  > </cfhttp>
  >
  > <cfset txt=cfhttp.FileContent>
  >
  > <cfset re = ([-+]?\d+).*?(of).*?(10)>
  > <cfset m = #REFindNoCase(#re#,#txt#,1,"TRUE")#>
  > <cfif #ArrayLen(m.pos)# gt 1>
  > <cfset int1=#Mid(txt,m.pos[2],m.len[2])#>
  > <cfset word1=#Mid(txt,m.pos[3],m.len[3])#>
  > <cfset int2=#Mid(txt,m.pos[4],m.len[4])#>
  > <cfoutput>
  > (#replace(int1,"<"
  ,"&lt;")#)(#replace(word1,"<"
  > ,"&lt;")#)(#replace(int2,"<" ,"&lt;")#)
  > </cfoutput>
  > </cfif>
  >
  > But it seems that the cfhttp is not using the
  user-agent, as I get back
  > 10px; when I dump out 1 of the locations......
  >
  > Any suggestions??
  >
  >

• Exploiting the parameter user-agent in ADF application

  hi all
  i'm using jdeveloper 11g and when information security test my APP they gave me report with Security Risk MED
  i try to solve all problems but still a one
  i dont know how to solve it and they insist to prevent deployment unless resolve this issue
  150022Syntax Error Occurred
  Category Information Disclosure
  Threat
  A test payload generated a syntax error within the Web application. This often points to a problem with input validation routines or lack of filters on
  user-supplied content.
  Impact
  A malicious user may be able to create a denial of service, serious error, or exploit depending on the error encountered by the Web application
  Detection Information
  Parameter It has been detected by exploiting the parameter user-agent
  The payloads section will display a list of tests that show how the param could have been exploited to collect the
  information
  #1 User-Agent: Mozilla/*
  #2 Cookie: JSESSIONID=6vYgRG1GGNyQxszysL4nnyg53SH48BMBkQvvnPhNKTCNvTy2gyKD!569345819
  please heeeeeeeeeeeeeeeelp

  hi Timo Hahn
  thnx for ur replay
  i m using jdev 11.1.2.1 and update it to 11.1.2.3 to try to solve but it still.
  all fields in the form are required and have a validator .
  the report for this issue is :
  #1 Response
  Vulnerable to slow HTTP headers attack Server resets timeout after accepting header data from peer.
  150022Syntax Error Occurred (1)
  150022Syntax Error Occurred
  URL: http://10.1.156.101:7001/ecs/faces/default New
  Finding # 85633583
  Category Information Disclosure
  CWE -
  OWASP A6 Security Misconfiguration
  WASC WASC-15 APPLICATION
  MISCONFIGURATION
  First Time Detected 18 Mar 2013 11:07AM GMT
  Last Time Detected 18 Mar 2013 11:07AM GMT
  Last Time Tested 18 Mar 2013 11:07AM GMT
  Times Detected 1
  Details
  Threat
  A test payload generated a syntax error within the Web application. This often points to a problem with input validation routines or lack of filters on
  user-supplied content.
  Impact
  A malicious user may be able to create a denial of service, serious error, or exploit depending on the error encountered by the Web application
  Detection Information
  Parameter It has been detected by exploiting the parameter user-agent
  The payloads section will display a list of tests that show how the param could have been exploited to collect the
  information
  Authentication In order to detect this vulnerability, no authentication has been required.
  Payloads (5 instances)
  #1 Request
  Payload /*
  Request GET http://10.1.156.101:7001/ecs/faces/default
  #1 User-Agent: Mozilla/*
  #2 Cookie: JSESSIONID=6vYgRG1GGNyQxszysL4nnyg53SH48BMBkQvvnPhNKTCNvTy2gyKD!569345819;
  Error 500--Internal Server Error
  java.lang.IllegalArgumentException: version must be non-empty
  at org.apache.myfaces.trinidad.context.Version._checkNonEmptyString(Version.java:200)
  at org.apache.myfaces.trinidad.context.Version.(Version.java:69)
  at org.apache.myfaces.trinidad.context.Version.(Version.java:54)
  at org.apache.myfaces.trinidadinternal.agent.TrinidadAgentImpl.(TrinidadAgentImpl.java:55)
  at org.apache.myfaces.trinidadinternal.context.RequestContextImpl.getAgent(RequestContext
  please any help

• User Agent caused Yahoo email problems

  I downloaded User Agent Switcher. I switched to iPhone and visited Yahoo email. Now I can't get email to go back to the original format even after switching User Agent back to default. Using Firefox 29.0.1 on Mac OSX 10.8.5. I had a similar problem with youtube and deleted my youtube cookies which fixed the problem but this has not worked for yahoo.

  Many site issues can be caused by corrupt cookies or cache. In order to try to fix these problems, the first step is to clear both cookies and the cache.
  Note: ''This will temporarily log you out of all sites you're logged in to.''
  To clear cache and cookies do the following:
  #Click the menu button [[Image:New Fx Menu]] and click History button, and then Clear Recent History... .
  #Under "Time range to clear", select "Everything".
  #Now, click the arrow next to Details to toggle the Details list active.
  #From the details list, check ''Cache'' and ''Cookies'' and uncheck everything else.
  #Now click the ''Clear now'' button.
  Further information can be found in the [[Clear your cache, history and other personal information in Firefox]] article.
  Did this fix your problems? Please report back to us!