CVE-2018-18956
- EPSS 1.14%
- Published 05.11.2018 21:29:00
- Last modified 21.11.2024 03:56:56
The ProcessMimeEntity function in util-decode-mime.c in Suricata 4.x before 4.0.6 allows remote attackers to cause a denial of service (segfault and daemon crash) via crafted input to the SMTP parser, as exploited in the wild in November 2018.
CVE-2016-10728
- EPSS 0.39%
- Published 23.07.2018 20:29:00
- Last modified 21.11.2024 02:44:36
An issue was discovered in Suricata before 3.1.2. If an ICMPv4 error packet is received as the first packet on a flow in the to_client direction, it confuses the rule grouping lookup logic. The toclient inspection will then continue with the wrong ru...
CVE-2018-14568
- EPSS 0.28%
- Published 23.07.2018 20:29:00
- Last modified 21.11.2024 03:49:19
Suricata before 4.0.5 stops TCP stream inspection upon a TCP RST from a server. This allows detection bypass because Windows TCP clients proceed with normal processing of TCP data that arrives shortly after an RST (i.e., they act as if the RST had no...
CVE-2018-6794
- EPSS 37.43%
- Published 07.02.2018 05:29:00
- Last modified 21.11.2024 04:11:12
Suricata before 4.0.4 is prone to an HTTP detection bypass vulnerability in detect.c and stream-tcp.c. If a malicious server breaks a normal TCP flow and sends data before the 3-way handshake is complete, then the data sent by the malicious server wi...