2006-06-02 10:00:00
mitre
PUBLISHED
The HTTP Inspect preprocessor (http_inspect) in Snort 2.4.0 through 2.4.4 allows remote attackers to bypass "uricontent" rules via a carriage return (r) after the URL and before the HTTP declaration.