Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The ProcessMimeEntity function in util-decode-mime.c in Suricata 4.x before 4.0.6 allows remote attackers to cause a denial of service (segfault and daemon crash) via crafted input to the SMTP parser, as exploited in the wild in November 2018.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Suricata 输入验证错误漏洞
Vulnerability Description
Suricata是开放信息安全基金会(Open Information Security Foundation,OISF)和其支持的厂商共同开发的一套网络入侵检测系统(IDS)、入侵防御系统(IPS)和网络安全监控引擎,它支持多线程、内置IPv6、可加载预设规则等。 Suricata 4.x至4.0.5版本的util-decode-mime.c文件中的‘ProcessMimeEntity’函数存在安全漏洞。远程攻击者可通过特制的输入利用该漏洞造成拒绝服务(段错误和守护进程崩溃)。
CVSS Information
N/A
Vulnerability Type
N/A