CVE-2014-6603

Name of the Vulnerable Software and Affected Versions Suricata versions prior to 2.0.4

Description The issue allows remote attackers to bypass SSH rules, cause a denial of service (crash), or possibly have unspecified other impact via a crafted banner. This is triggered by the SSHParseBanner function in the SSH parser, which can cause a large memory allocation or an out-of-bounds write.

Recommendations For versions prior to 2.0.4, update to version 2.0.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the SSH parser to minimize the risk of exploitation.