Cisco Security Advisory - Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerabilities

Started by Netwörkheäd, May 24, 2021, 06:02:29 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions

Netwörkheäd

May 24, 2021, 06:02:29 AM
Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerabilities

Multiple Cisco products are affected by vulnerabilities in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP.


These vulnerabilities are due to incorrect handling of specific HTTP header parameters. An attacker could exploit these vulnerabilities by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured file policy for HTTP packets and deliver a malicious payload.


Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities. 


This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-http-fp-bp-KfDdcQhc



     
         
Security Impact Rating:  Medium
   
   
       
CVE: CVE-2021-1494,CVE-2021-1495
Source: Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerabilities
Let's not argue. Let's network!
Print
Go Up Pages1
User actions