Описание
The HTTP Inspect preprocessor (http_inspect) in Snort 2.4.0 through 2.4.4 allows remote attackers to bypass "uricontent" rules via a carriage return (\r) after the URL and before the HTTP declaration.
Ссылки
- Vendor Advisory
- Vendor Advisory
- ExploitPatch
- ExploitPatch
- ExploitPatch
- ExploitPatch
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:sourcefire:snort:2.4:*:*:*:*:*:*:*
cpe:2.3:a:sourcefire:snort:2.4.1:*:*:*:*:*:*:*
cpe:2.3:a:sourcefire:snort:2.4.2:*:*:*:*:*:*:*
cpe:2.3:a:sourcefire:snort:2.4.3:*:*:*:*:*:*:*
cpe:2.3:a:sourcefire:snort:2.4.4:*:*:*:*:*:*:*
EPSS
Процентиль: 96%
0.22767
Средний
5 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
ubuntu
больше 19 лет назад
The HTTP Inspect preprocessor (http_inspect) in Snort 2.4.0 through 2.4.4 allows remote attackers to bypass "uricontent" rules via a carriage return (\r) after the URL and before the HTTP declaration.
debian
больше 19 лет назад
The HTTP Inspect preprocessor (http_inspect) in Snort 2.4.0 through 2. ...
github
почти 4 года назад
The HTTP Inspect preprocessor (http_inspect) in Snort 2.4.0 through 2.4.4 allows remote attackers to bypass "uricontent" rules via a carriage return (\r) after the URL and before the HTTP declaration.
EPSS
Процентиль: 96%
0.22767
Средний
5 Medium
CVSS2
Дефекты
CWE-264