cbcvebase.

Sourcefire Snort vulnerabilities

5 known vulnerabilities affecting sourcefire/snort.

Total CVEs
5
CISA KEV
0
Public exploits
4
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2MEDIUM2

Vulnerabilities

Page 1 of 1
CVE-2005-3252P2HIGHCVSS 7.5PoCv2.4.0v2.4.1+1 more2005-10-18
CVE-2005-3252 [HIGH] CVE-2005-3252: Stack-based buffer overflow in the Back Orifice (BO) preprocessor for Snort before 2.4.3 allows remo Stack-based buffer overflow in the Back Orifice (BO) preprocessor for Snort before 2.4.3 allows remote attackers to execute arbitrary code via a crafted UDP packet.
nvd
CVE-2003-0209P3CRITICALCVSS 10.0PoCv1.8v1.8.1+8 more2003-05-05
CVE-2003-0209 [CRITICAL] CVE-2003-0209: Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and earlier allows remo Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and earlier allows remote attackers to execute arbitrary code via large sequence numbers in packets, which enable a heap-based buffer overflow.
nvd
CVE-2004-2652P3HIGHCVSS 7.8PoCv2.1.0v2.1.1_rc1+2 more2004-12-31
CVE-2004-2652 [HIGH] CVE-2004-2652: The DecodeTCPOptions function in decode.c in Snort before 2.3.0, when printing TCP/IP options using The DecodeTCPOptions function in decode.c in Snort before 2.3.0, when printing TCP/IP options using FAST output or verbose mode, allows remote attackers to cause a denial of service (crash) via packets with invalid TCP/IP options, which trigger a null dereference.
nvd
CVE-2006-2769P3MEDIUMCVSS 5.0PoCv2.4v2.4.1+3 more2006-06-02
CVE-2006-2769 [MEDIUM] CWE-264 CVE-2006-2769: The HTTP Inspect preprocessor (http_inspect) in Snort 2.4.0 through 2.4.4 allows remote attackers to The HTTP Inspect preprocessor (http_inspect) in Snort 2.4.0 through 2.4.4 allows remote attackers to bypass "uricontent" rules via a carriage return (\r) after the URL and before the HTTP declaration.
nvd
CVE-2006-0839P4MEDIUMCVSS 5.0v2.4.32006-02-22
CVE-2006-0839 [MEDIUM] CVE-2006-0839: The frag3 preprocessor in Sourcefire Snort 2.4.3 does not properly reassemble certain fragmented pac The frag3 preprocessor in Sourcefire Snort 2.4.3 does not properly reassemble certain fragmented packets with IP options, which allows remote attackers to evade detection of certain attacks, possibly related to IP option lengths.
nvd
Sourcefire Snort vulnerabilities | cvebase