VYPR
Unrated severityOSV Advisory· Published Nov 5, 2018· Updated Aug 5, 2024

CVE-2018-18956

CVE-2018-18956

Description

The ProcessMimeEntity function in util-decode-mime.c in Suricata 4.x before 4.0.6 allows remote attackers to cause a denial of service (segfault and daemon crash) via crafted input to the SMTP parser, as exploited in the wild in November 2018.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Oisf/SuricataOSV2 versions
    suricata-4.0.0, suricata-4.0.1, suricata-4.0.2, …+ 1 more
    • (no CPE)range: suricata-4.0.0, suricata-4.0.1, suricata-4.0.2, …
    • (no CPE)range: <=4.0.6

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.