VYPR
Unrated severityNVD Advisory· Published Oct 7, 2014· Updated Jun 17, 2026

CVE-2014-6603

CVE-2014-6603

Description

The SSHParseBanner function in SSH parser (app-layer-ssh.c) in Suricata before 2.0.4 allows remote attackers to bypass SSH rules, cause a denial of service (crash), or possibly have unspecified other impact via a crafted banner, which triggers a large memory allocation or an out-of-bounds write.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • cpe:2.3:a:openinfosecfoundation:suricata:*:*:*:*:*:*:*:*+ 5 more
    • cpe:2.3:a:openinfosecfoundation:suricata:*:*:*:*:*:*:*:*range: <=2.0.3-2
    • cpe:2.3:a:openinfosecfoundation:suricata:2.0.1-1:*:*:*:*:*:*:*
    • cpe:2.3:a:openinfosecfoundation:suricata:2.0.1-2:*:*:*:*:*:*:*
    • cpe:2.3:a:openinfosecfoundation:suricata:2.0.2-1:*:*:*:*:*:*:*
    • cpe:2.3:a:openinfosecfoundation:suricata:2.0.2-2:*:*:*:*:*:*:*
    • cpe:2.3:a:openinfosecfoundation:suricata:2.0.3-1:*:*:*:*:*:*:*
  • Oisf/Suricatallm-fuzzy
    Range: <2.0.4

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.