Project

General

Profile

Actions
Copy link

Security #2969

closed
AA PA

http_header signature do not alert on HTTP response with a single \r\n ending

Security #2969: http_header signature do not alert on HTTP response with a single \r\n ending

Added by ajaxtpm ajaxtpm almost 7 years ago. Updated over 5 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Philippe Antoine
Target version:
4.1.5
Affected Versions:
4.1.4
Label:
CVE:
2019-17420
Git IDs:
Severity:
Disclosure Date:

Description

Signature:
alert http any any -> any any (msg: "'ng1nx' Server header found"; flow: established, from_server; content: "ng1nx"; nocase; http_header; classtype: attempted-admin; sid: 1; rev: 1; )

Pcap attached

Files

ng1nx.pcap (1.01 KB) ng1nx.pcap ajaxtpm ajaxtpm, 05/07/2019 11:25 AM

Related issues 2 (0 open2 closed)

Related to Suricata - Task #3141: libhtp 0.5.31ClosedVictor JulienActions
Related to Suricata - Task #3142: libhtp 0.5.31 (4.1.x)ClosedVictor JulienActions

VJ Updated by Victor Julien almost 7 years ago Actions
Copy link
 #1

  • Status changed from New to Assigned
  • Assignee set to Philippe Antoine
  • Target version changed from 4.1.4 to TBD

VJ Updated by Victor Julien almost 7 years ago Actions
Copy link
 #2

  • Affected Versions 4.1.4 added
  • Affected Versions deleted (4.1.5)

AA Updated by ajaxtpm ajaxtpm over 6 years ago Actions
Copy link
 #3

Hi guys, any update on it ?

VJ Updated by Victor Julien over 6 years ago Actions
Copy link
 #5

  • Status changed from Assigned to Closed
  • Target version deleted (TBD)

VJ Updated by Victor Julien over 5 years ago Actions
Copy link
 #6

  • Tracker changed from Bug to Security
  • CVE set to 2019-17420

CVE is technically in libhtp, but as Suricata bundles it we track it here as well.

VJ Updated by Victor Julien over 5 years ago Actions
Copy link
 #7

VJ Updated by Victor Julien over 5 years ago Actions
Copy link
 #8

  • Related to Task #3142: libhtp 0.5.31 (4.1.x) added

VJ Updated by Victor Julien over 5 years ago Actions
Copy link
 #9

  • Target version set to 4.1.5
Actions
Copy link

Also available in: PDF Atom