6 matches found
CVE-2019-18792
creationtimestamp| type| source ---|---|--- 2024-03-19 17:12:02+00:00| seen| https://t.me/ctinow/211706...
Debian: Security Advisory (DLA-2087-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-2087-1 : suricata security update
Two vulnerabilities have recently been discovered in the stream-tcp code of the intrusion detection and prevention tool Suricata. CVE-2019-18625 It was possible to bypass/evade any tcp based signature by faking a closed TCP session using an evil server. After the TCP SYN packet, it was possible t...
[SECURITY] [DLA 2087-1] suricata security update
Package : suricata Version : 2.0.7-2+deb8u5 CVE ID : CVE-2019-18625 CVE-2019-18792 Two vulnerabilities have recently been discovered in the stream-tcp code of the intrusion detection and prevention tool Suricata. CVE-2019-18625 It was possible to bypass/evade any tcp based signature by faking a...
CVE-2019-18792
An issue was discovered in Suricata 5.0.0. It is possible to bypass/evade any tcp based signature by overlapping a TCP segment with a fake FIN packet. The fake FIN packet is injected just before the PUSH ACK packet we want to bypass. The PUSH ACK packet containing the data will be ignored by...
CVE-2019-18792
CVE-2019-18792 affects Suricata 5.0.0, enabling evasion of TCP-based signatures by overlapping a TCP segment with a fake FIN packet, causing the PUSH ACK carrying data to be ignored. The fake FIN packet is accepted (ACK not set) while the legitimate packet is dropped due to overlap; affected Linu...