The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Vulnerability of Snort: data transit via HTTP Detection Bypass

Synthesis of the vulnerability 

An attacker can bypass filtering rules via HTTP Detection Bypass of Snort, in order to transmit malicious data.
Vulnerable software: Meraki MX***, Solaris, Snort.
Severity of this announce: 2/4.
Creation date: 22/10/2020.
Références of this computer vulnerability: CERTFR-2020-AVI-671, cisco-sa-ftd-bypass-3eCfd24j, CSCvm69545, CSCvq96573, CVE-2020-3299, VIGILANCE-VUL-33661.

Description of the vulnerability 

An attacker can bypass filtering rules via HTTP Detection Bypass of Snort, in order to transmit malicious data.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

This computer vulnerability bulletin impacts software or systems such as Meraki MX***, Solaris, Snort.

Our Vigil@nce team determined that the severity of this vulnerability bulletin is medium.

The trust level is of type confirmed by the editor, with an origin of internet client.

An attacker with a expert ability can exploit this threat note.

Solutions for this threat 

Snort: version 2.9.14.
The version 2.9.14 is fixed:
  https://www.snort.org/downloads

Cisco Meraki MX: solution CSCvm69545 CSCvq96573.
The solution is described on the Cisco site:
  https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm69545
  https://tools.cisco.com/bugsearch/bug/CSCvm69545
  https://tools.cisco.com/quickview/bug/CSCvm69545
  https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvq96573
  https://tools.cisco.com/bugsearch/bug/CSCvq96573
  https://tools.cisco.com/quickview/bug/CSCvq96573

Oracle Solaris: patch for third party software of January 2021 v3.
A patch is available:
  https://support.oracle.com/rs?type=doc&id=1448883.1
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

Computer vulnerabilities tracking service 

Vigil@nce provides computer vulnerability analysis. The Vigil@nce security watch publishes vulnerability bulletins about threats impacting the information system.