QwikSec

Security Database

CVE

CWE

Training

CVE-2018-14568

Published: Jul 23, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

Suricata before 4.0.5 stops TCP stream inspection upon a TCP RST from a server. This allows detection bypass because Windows TCP clients proceed with normal processing of TCP data that arrives shortly after an RST (i.e., they act as if the RST had not yet been received).

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://suricata-ids.org/2018/07/18/suricata-4-0-5-available/

x_refsource_MISC

https://github.com/OISF/suricata/pull/3428/commits/843d0b7a10bb45627f94764a6c5d468a24143345

x_refsource_MISC

https://redmine.openinfosecfoundation.org/issues/2501

x_refsource_MISC

https://github.com/kirillwow/ids_bypass

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.