Podatność CVE-2009-3641


Publikacja: 2009-10-28   Modyfikacja: 2012-02-13

Opis:
Snort before 2.8.5.1, when the -v option is enabled, allows remote attackers to cause a denial of service (application crash) via a crafted IPv6 packet that uses the (1) TCP or (2) ICMP protocol.

W naszej bazie, znaleźliśmy następujące noty dla tego CVE:
Tytuł
Autor
Data
Med.
Snort 2.8.5.1 multiple vulnerabilities
Laurent Gaffi
30.10.2009

Typ:

CWE-Other

Producent: Snort
Produkt: Snort 
Wersje:
2.8.3.5
2.8.3.4.1
2.8.3.4
2.8.3.2
2.8.3.1
2.8.3
2.8.2.2
2.8.0
2.7_beta1
2.6.2
2.6.1.2
2.6.1.1
2.6.1
2.0
1.9.1
1.9.0
1.8.7
1.8.6
1.8.5
1.8.4
1.8.3
1.8.2
1.8.1
1.8.0
1.6

CVSS2 => (AV:N/AC:M/Au:N/C:N/I:N/A:P)

Ogólna skala CVSS
Znaczenie
Łatwość wykorzystania
4.3/10
2.9/10
8.6/10
Wymagany dostęp
Złożoność ataku
Autoryzacja
Zdalny
Średnia
Nie wymagana
Wpływ na poufność
Wpływ na integralność
Wpływ na dostępność
Brak
Brak
Częściowy

 Referencje:
http://www.securityfocus.com/bid/36795
http://vrt-sourcefire.blogspot.com/2009/10/snort-2851-release.html
http://seclists.org/fulldisclosure/2009/Oct/299
https://bugzilla.redhat.com/show_bug.cgi?id=530863
http://xforce.iss.net/xforce/xfdb/53912
http://www.vupen.com/english/advisories/2009/3014
http://www.osvdb.org/59159
http://www.openwall.com/lists/oss-security/2009/10/25/5
http://securitytracker.com/id?1023076
http://secunia.com/advisories/37135
http://marc.info/?l=oss-security&m=125649553414700&w=2
http://dl.snort.org/snort-current/release_notes_2851.txt

Podobne CVE
CVE-2016-1417
Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse tcapi.dll that is located in the same folder on a remote file share as a pcap file that ...
CVE-2008-1804
preprocessors/spp_frag3.c in Sourcefire Snort before 2.8.1 does not properly identify packet fragments that have dissimilar TTL values, which allows remote attackers to bypass detection rules by using a different TTL for each fragment.
CVE-2007-1398
The frag3 preprocessor in Snort 2.6.1.1, 2.6.1.2, and 2.7.0 beta, when configured for inline use on Linux without the ip_conntrack module loaded, allows remote attackers to cause a denial of service (segmentation fault and application crash) via cert...
CVE-2007-0251
Integer underflow in the DecodeGRE function in src/decode.c in Snort 2.6.1.2 allows remote attackers to trigger dereferencing of certain memory locations via crafted GRE packets, which may cause corruption of log files or writing of sensitive informa...
CVE-2006-6931
Algorithmic complexity vulnerability in Snort before 2.6.1, during predicate evaluation in rule matching for certain rules, allows remote attackers to cause a denial of service (CPU consumption and detection outage) via crafted network traffic, aka a...
CVE-2006-5276
Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic.
CVE-2003-0033
Buffer overflow in the RPC preprocessor for Snort 1.8 and 1.9.x before 1.9.1 allows remote attackers to execute arbitrary code via fragmented RPC packets.
CVE-2001-1558
Unknown vulnerability in IP defragmenter (frag2) in Snort before 1.8.3 allows attackers to cause a denial of service (crash).

Copyright 2019, cxsecurity.com

 

Back to Top