Vulnerability Details CVE-2018-18956
The ProcessMimeEntity function in util-decode-mime.c in Suricata 4.x before 4.0.6 allows remote attackers to cause a denial of service (segfault and daemon crash) via crafted input to the SMTP parser, as exploited in the wild in November 2018.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 78.1%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- https://lists.openinfosecfoundation.org/pipermail/oisf-users/2018-November/016316.html
- https://lists.openinfosecfoundation.org/pipermail/oisf-users/2018-October/016227.html
- https://redmine.openinfosecfoundation.org/issues/2658#change-10374
- https://lists.openinfosecfoundation.org/pipermail/oisf-users/2018-November/016316.html
- https://lists.openinfosecfoundation.org/pipermail/oisf-users/2018-October/016227.html
- https://redmine.openinfosecfoundation.org/issues/2658#change-10374
Products affected by CVE-2018-18956
-
cpe:2.3:a:suricata-ids:suricata:4.0.0
-
cpe:2.3:a:suricata-ids:suricata:4.0.1
-
cpe:2.3:a:suricata-ids:suricata:4.0.2
-
cpe:2.3:a:suricata-ids:suricata:4.0.3
-
cpe:2.3:a:suricata-ids:suricata:4.0.4