CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-15377
https://notcve.org/view.php?id=CVE-2017-15377
23 Oct 2017 — In Suricata before 4.x, it was possible to trigger lots of redundant checks on the content of crafted network traffic with a certain signature, because of DetectEngineContentInspection in detect-engine-content-inspection.c. The search engine doesn't stop when it should after no match is found; instead, it stops only upon reaching inspection-recursion-limit (3000 by default). En Suricata en versiones anteriores a las 4.x, era posible desencadenar numerosos chequeos redundantes en el contenido del trafico de ... • https://github.com/OISF/suricata/commit/b9579fbe7dd408200ef03cbe20efddb624b73885 •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2015-8954
https://notcve.org/view.php?id=CVE-2015-8954
20 Mar 2017 — The MemcmpLowercase function in Suricata before 2.0.6 improperly excludes the first byte from comparisons, which might allow remote attackers to bypass intrusion-prevention functionality via a crafted HTTP request. La función MemcmpLowercase en Suricata en versiones anteriores a 2.0.6 excluye incorrectamente el primer byte de las comparaciones, lo que podría permitir a atacantes remotos eludir la funcionalidad de prevención de intrusiones a través de una solicitud HTTP manipulada. • https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777523 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7177
https://notcve.org/view.php?id=CVE-2017-7177
18 Mar 2017 — Suricata before 3.2.1 has an IPv4 defragmentation evasion issue caused by lack of a check for the IP protocol during fragment matching. Suricata en versiones anteriores a 3.2.1 tiene un problema de evasión de desfragmentación IPv4 provocado por la falta de una comprobación para el protocolo IP durante la coincidencia de fragmentos. • http://www.securityfocus.com/bid/97047 • CWE-358: Improperly Implemented Security Check for Standard •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2015-0971 – Debian Security Advisory 3254-1
https://notcve.org/view.php?id=CVE-2015-0971
11 May 2015 — The DER parser in Suricata before 2.0.8 allows remote attackers to cause a denial of service (crash) via vectors related to SSL/TLS certificates. El analizador sintáctico DER en Suricata anterior a 2.0.8 permite a atacantes remotos causar una denegación de servicio (caída) a través de vectores relacionados con certificados SSL/TLS. Kostya Kortchinsky of the Google Security Team discovered a flaw in the DER parser used to decode SSL/TLS certificates in suricata. A remote attacker can take advantage of this f... • http://suricata-ids.org/2015/05/06/suricata-2-0-8-available • CWE-399: Resource Management Errors •
CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 2CVE-2014-6603 – Suricata 2.0.3 out of Bounds Access
https://notcve.org/view.php?id=CVE-2014-6603
24 Sep 2014 — The SSHParseBanner function in SSH parser (app-layer-ssh.c) in Suricata before 2.0.4 allows remote attackers to bypass SSH rules, cause a denial of service (crash), or possibly have unspecified other impact via a crafted banner, which triggers a large memory allocation or an out-of-bounds write. La función SSHParseBanner en SSH parser (app-layer-ssh.c) en Suricata anterior a 2.0.4 permite a atacantes remotos evadir las normas SSH, causar una denegación de servicio (caída), o posiblemente tener otro impacto ... • http://lists.fedoraproject.org/pipermail/package-announce/2014-October/139630.html • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 19EXPL: 0CVE-2013-5919
https://notcve.org/view.php?id=CVE-2013-5919
25 Sep 2013 — Suricata before 1.4.6 allows remote attackers to cause a denial of service (crash) via a malformed SSL record. Suricata anterior a 1.4.6 permite a atacantes remotos causar una denegación de servicio (caída) a través de un registro SSL malformado. • http://secunia.com/advisories/54968 • CWE-20: Improper Input Validation •