VYPR
Unrated severityOSV Advisory· Published Apr 4, 2019· Updated Aug 5, 2024

CVE-2018-10244

CVE-2018-10244

Description

Suricata version 4.0.4 incorrectly handles the parsing of an EtherNet/IP PDU. A malformed PDU can cause the parsing code to read beyond the allocated data because DecodeENIPPDU in app-layer-enip-commmon.c has an integer overflow during a length check.

Affected products

2
  • Oisf/SuricataOSV2 versions
    suricata-0.8.2, suricata-1.0.0, suricata-1.0.1, …+ 1 more
    • (no CPE)range: suricata-0.8.2, suricata-1.0.0, suricata-1.0.1, …
    • (no CPE)range: = 4.0.4

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.