漏洞信息详情

Snort HTTP检测预处理器 访问控制绕过漏洞

漏洞简介

Snort 中的HTTP检测预处理器(http_inspect)允许远程攻击者通过在URL之后和在HTTP声明之前的一个回车键(\r)来绕过"uricontent"规则。

漏洞公告

目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:

Snort Project snort-2.4.5.tar.gz

http://www.snort.org/dl/current/snort-2.4.5.tar.gz

Snort Project Snort 2.4.1

Snort Project snort-2.4.5.tar.gz

http://www.snort.org/dl/current/snort-2.4.5.tar.gz

Snort Project Snort 2.4.2

Snort Project snort-2.4.5.tar.gz

http://www.snort.org/dl/current/snort-2.4.5.tar.gz

Snort Project Snort 2.4.3

Snort Project snort-2.4.5.tar.gz

http://www.snort.org/dl/current/snort-2.4.5.tar.gz

Snort Project Snort 2.4.4

Demarc snort-2.4.4-demarc-patch.diff

http://www.demarc.com/files/patch_20060531/snort-2.4.4-demarc-patch.di

ff

Demarc snort-2.4.4-demarc-patched.tar.gz

http://www.demarc.com/files/patch_20060531/snort-2.4.4-demarc-patched.

tar.gz

Snort Project snort-2.4.5.tar.gz

http://www.snort.org/dl/current/snort-2.4.5.tar.gz

参考网址

来源: BID

名称: 18200

链接:http://www.securityfocus.com/bid/18200

来源: OSVDB

名称: 25837

链接:http://www.osvdb.org/25837

来源: VUPEN

名称: ADV-2006-2119

链接:http://www.frsirt.com/english/advisories/2006/2119

来源: MISC

链接:http://www.demarc.com/support/downloads/patch_20060531

来源: SECTRACK

名称: 1016191

链接:http://securitytracker.com/id?1016191

来源: MLIST

名称: [Snort-devel] 20060531 Snort Uricontent Bypass Vulnerability

链接:http://marc.theaimsgroup.com/?l=snort-devel&m=114909074311462&w=2

来源: www.snort.org

链接:http://www.snort.org/pub-bin/snortnews.cgi#431

来源: BUGTRAQ

名称: 20060603 Re: New Snort Bypass - Patch - Bypass of Patch

链接:http://www.securityfocus.com/archive/1/archive/1/435872/100/0/threaded

来源: BUGTRAQ

名称: 20060602 Re: New Snort Bypass - Patch - Bypass of Patch

链接:http://www.securityfocus.com/archive/1/archive/1/435797/100/0/threaded

来源: BUGTRAQ

名称: 20060602 New Snort Bypass - Patch - Bypass of Patch

链接:http://www.securityfocus.com/archive/1/archive/1/435734/100/0/threaded

来源: BUGTRAQ

名称: 20060601 Snort HTTP Inspect Pre-Processor Uricontent Bypass

链接:http://www.securityfocus.com/archive/1/archive/1/435600/100/0/threaded

来源: SECUNIA

名称: 20766

链接:http://secunia.com/advisories/20766

来源: SECUNIA

名称: 20413

链接:http://secunia.com/advisories/20413

来源: SUSE

名称: SUSE-SR:2006:014

链接:http://lists.suse.com/archive/suse-security-announce/2006-Jun/0008.html

来源: XF

名称: snort-uricontent-rule-bypass(26855)

链接:http://xforce.iss.net/xforce/xfdb/26855

来源: SREASON

名称: 1018

链接:http://securityreason.com/securityalert/1018

补丁

    暂无

漏洞信息快速查询

相关漏洞

更多