CVE-2014-6603 Information

Description

The SSHParseBanner function in SSH parser (app-layer-ssh.c) in Suricata before 2.0.4 allows remote attackers to bypass SSH rules cause a denial of service (crash) or possibly have unspecified other impact via a crafted banner which triggers a large memory allocation or an out-of-bounds write.

Reference

http://lists.fedoraproject.org/pipermail/package-announce/2014-October/139630.html http://lists.fedoraproject.org/pipermail/package-announce/2014-October/139821.html http://packetstormsecurity.com/files/128382/Suricata-2.0.3-Out-Of-Bounds-Access.html http://seclists.org/fulldisclosure/2014/Sep/79 http://www.securityfocus.com/archive/1/533515/100/0/threaded http://www.securityfocus.com/bid/70083 https://exchange.xforce.ibmcloud.com/vulnerabilities/96157