SSH Banner Parsing Vulnerability in Suricata by Open Information Security Foundation
CVE-2018-10242

7.5HIGH

Key Information:

Vendor: Suricata-ids
Status: Suricata
Vendor: CVE Published:; 4 April 2019

🔔 Create Suricata-ids Vulnerability Alert

What is CVE-2018-10242?

The Suricata version 4.0.4 exhibits a flaw in its handling of the SSH banner parsing process. Specifically, the SSHParseBanner function within the app-layer-ssh.c file does not perform adequate length checks on the input data. Consequently, a specially crafted malformed SSH banner may lead to a buffer overflow, allowing for potential exploits that could compromise the security of systems utilizing this version.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://suricata-ids.org/2018/07/18/suricata-4-0-5-availa...

x_refsource_CONFIRM

https://lists.debian.org/debian-lts-announce/2019/04/msg0...

mailing-listx_refsource_MLIST

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 4, 2019
Vulnerability Reserved
Apr 20, 2018

JSON

Suricata-ids

What is CVE-2018-10242?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.