Menu

CVE-2018-10242

Software: suricata, v. 4.0.4.
Language: C
Risk: medium / high
Type: buffer overflow/remote

Description: Incorrectly handles the parsing of the SSH banner. A malformed SSH banner can cause the parsing code to read beyond the allocated data, because SSHParseBanner in app-layer-ssh.c lacks a length check.

Status: published

Customers & Partners

Digital Hub Bonn Techboost Deutsche Börse Bosch GmbH Telekom HTGF Deutsche Cyber-Sicherheitsorganisation Intevation Sopra Steria Deutsche Börse Venture Network Allianz für Cyber-Sicherheit Cyber Security Cluster Bonn