CVE-2014-6603 (retired)

Priority
Description
The SSHParseBanner function in SSH parser (app-layer-ssh.c) in Suricata
before 2.0.4 allows remote attackers to bypass SSH rules, cause a denial of
service (crash), or possibly have unspecified other impact via a crafted
banner, which triggers a large memory allocation or an out-of-bounds write.
Notes
 jdstrand> in 1.7 the affected code is not present and the reproducer does not
  work
More Information

Updated: 2019-03-26 12:13:32 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)