Lucene search
MitreCVELIST:CVE-2021-45098HistoryDec 16, 2021 - 4:07 a.m.
CVE-2021-45098
2021-12-1604:07:57
mitre
www.cve.org
4
suricata
http
signature bypass
rst tcp packet
cve-2021-45098
An issue was discovered in Suricata before 6.0.4. It is possible to bypass/evade any HTTP-based signature by faking an RST TCP packet with random TCP options of the md5header from the client side. After the three-way handshake, it’s possible to inject an RST ACK with a random TCP md5header option. Then, the client can send an HTTP GET request with a forbidden URL. The server will ignore the RST ACK and send the response HTTP packet for the client’s request. These packets will not trigger a Suricata reject action.
Related
debiancve
debiancve
CVE-2021-45098
2021-12-16 05:15:08
osv
osv
CVE-2021-45098
2021-12-16 05:15:08
ubuntucve
ubuntucve
CVE-2021-45098
2021-12-16 00:00:00
alpinelinux
alpinelinux
CVE-2021-45098
2021-12-16 05:15:08
prion
prion
Design/Logic Flaw
2021-12-16 05:15:00
nvd
nvd
CVE-2021-45098
2021-12-16 05:15:08
cve
cve
CVE-2021-45098
2021-12-16 05:15:08
veracode
veracode
Cross-Site Request Forgery (CSRF)
2021-12-18 23:57:50
rosalinux
rosalinux
Advisory ROSA-SA-2023-2197
2023-07-25 10:14:11