Lucene search
Veracode Vulnerability DatabaseVERACODE:39647HistoryMar 11, 2023 - 12:24 a.m.
File Policy Bypass
2023-03-1100:24:57
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
snort
file policy bypass
http packets
vulnerability
malicious payload
software
0 Low
EPSS
Percentile
0.0%
snort is vulnerable to File Policy Bypass. The vulnerability exists due to incorrect handling of specific HTTP header parameters, which allows an attacker to bypass the configured file policy for HTTP packets and deliver a malicious payload by sending maliciously crafted HTTP packets.
Related
cve
cve
CVE-2021-1494
2022-02-25 11:31:06
debiancve
debiancve
CVE-2021-1494
2022-02-25 11:31:06
ubuntucve
ubuntucve
CVE-2021-1494
2021-12-31 00:00:00
cisco
cisco
nessus
nessus
Cisco Firepower Threat Defence Snort HTTP Detection Engine File Policy Bypass (cisco-sa-http-fp-bp-KfDdcQhc)
2021-05-28 00:00:00
Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass (cisco-sa-http-fp-bp-KfDdcQhc)
2021-05-28 00:00:00
Debian DLA-3317-1 : snort - LTS security update
2023-02-11 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3317-1)
2023-02-11 00:00:00
Mageia: Security Advisory (MGASA-2023-0117)
2023-03-31 00:00:00
Debian: Security Advisory (DSA-5354-1)
2023-02-19 00:00:00
osv
osv
snort - security update
2023-02-11 00:00:00
snort - security update
2023-02-18 00:00:00
debian
debian
[SECURITY] [DSA 5354-1] snort security update
2023-02-18 16:38:22
[SECURITY] [DLA 3317-1] snort security update
2023-02-10 23:24:22
mageia
mageia
Updated snort packages fix security vulnerability
2023-03-31 03:13:46