CVE-2019-1010251

Severity Score

7.5

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Open Information Security Foundation Suricata prior to version 4.1.2 is affected by: Denial of Service - DNS detection bypass. The impact is: An attacker can evade a signature detection with a specialy formed network packet. The component is: app-layer-detect-proto.c, decode.c, decode-teredo.c and decode-ipv6.c (https://github.com/OISF/suricata/pull/3590/commits/11f3659f64a4e42e90cb3c09fcef66894205aefe, https://github.com/OISF/suricata/pull/3590/commits/8357ef3f8ffc7d99ef6571350724160de356158b). The attack vector is: An attacker can trigger the vulnerability by sending a specifically crafted network request. The fixed version is: 4.1.2.

Open Information Security Foundation Suricata en versiones anteriores a la 4.1.2 se ve afectada por: Denegación de servicio: omisión de detección de DNS. El impacto es: un atacante puede evadir una detección de firmas con un paquete de red especialmente formado. El componente es: app-layer-detect-proto.c, decode.c, decode-teredo.c y decode-ipv6.c (https://github.com/OISF/suricata/pull/3590/commits/11f3659f64a4e42e90cb3c09fcef66894205aefe, https://github.com/OISF/suricata/pull/3590/commits/8357ef3f8ffc7d99ef6571350724160de356158b). El vector de ataque es: Un atacante puede activar la vulnerabilidad al enviar una solicitud de red específicamente diseñada. La versión corregida es: 4.1.2.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

None

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2019-03-20 CVE Reserved
2019-07-18 CVE Published
2024-07-11 EPSS Updated
2024-08-05 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-20: Improper Input Validation

CAPEC

References (3)

URL	Tag	Source
https://redmine.openinfosecfoundation.org/issues/2736	Issue Tracking

URL	Date	SRC

URL	Date	SRC
https://github.com/OISF/suricata/pull/3590/commits/11f3659f64a4e42e90cb3c09fcef66894205aefe	2019-07-23
https://github.com/OISF/suricata/pull/3590/commits/8357ef3f8ffc7d99ef6571350724160de356158b	2019-07-23

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Oisf Search vendor "Oisf"		Suricata Search vendor "Oisf" for product "Suricata"				4.0.2 Search vendor "Oisf" for product "Suricata" and version "4.0.2"		-		Affected
Oisf Search vendor "Oisf"		Suricata Search vendor "Oisf" for product "Suricata"				4.0.3 Search vendor "Oisf" for product "Suricata" and version "4.0.3"		-		Affected
Oisf Search vendor "Oisf"		Suricata Search vendor "Oisf" for product "Suricata"				4.0.5 Search vendor "Oisf" for product "Suricata" and version "4.0.5"		-		Affected
Oisf Search vendor "Oisf"		Suricata Search vendor "Oisf" for product "Suricata"				4.1.0 Search vendor "Oisf" for product "Suricata" and version "4.1.0"		beta1		Affected