ID CVE-2018-18956
Summary The ProcessMimeEntity function in util-decode-mime.c in Suricata 4.x before 4.0.6 allows remote attackers to cause a denial of service (segfault and daemon crash) via crafted input to the SMTP parser, as exploited in the wild in November 2018.
References
Vulnerable Configurations
CVSS
Base: None
Impact:
Exploitability:
nessus via4
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2018-D05860129F.NASL
    description This update fixes a segfault in the SMTP parser. This bug is tracked as CVE-2018-18956. There are a number of other bugfixes and performance improvements. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-01-16
    modified 2018-11-19
    plugin id 119020
    published 2018-11-19
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=119020
    title Fedora 27 : suricata (2018-d05860129f)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2018-CF58E1CBD1.NASL
    description This update fixes a segfault in the SMTP parser. This bug is tracked as CVE-2018-18956. There are a number of other bugfixes and performance improvements. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-01-16
    modified 2019-01-03
    plugin id 120805
    published 2019-01-03
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=120805
    title Fedora 28 : suricata (2018-cf58e1cbd1)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2018-787EE605A5.NASL
    description This update fixes a segfault in the SMTP parser. This bug is tracked as CVE-2018-18956. There are a number of other bugfixes and performance improvements. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-01-16
    modified 2019-01-03
    plugin id 120546
    published 2019-01-03
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=120546
    title Fedora 29 : suricata (2018-787ee605a5)
refmap via4
confirm https://lists.openinfosecfoundation.org/pipermail/oisf-users/2018-November/016316.html
misc
Last major update 07-11-2018 - 23:29
Published 05-11-2018 - 16:29
Last modified 07-11-2018 - 23:29
Back to Top