The SSHParseBanner function in SSH parser (app-layer-ssh.c) in Suricata before 2.0.4 allows remote attackers to bypass SSH rules, cause a denial of service (crash), or possibly have unspecified other impact via a crafted banner, which triggers a large memory allocation or an out-of-bounds write.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Suricata | Openinfosecfoundation | 2.0.1-2 | 2.0.1-2 |
Suricata | Openinfosecfoundation | 2.0.2-2 | 2.0.2-2 |
Suricata | Openinfosecfoundation | 2.0.2-1 | 2.0.2-1 |
Suricata | Openinfosecfoundation | 2.0.3-1 | 2.0.3-1 |
Suricata | Openinfosecfoundation | 2.0.1-1 | 2.0.1-1 |
Suricata | Openinfosecfoundation | * | 2.0.3-2 |