Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2008-1804HistoryMay 22, 2008 - 1:09 p.m.
CVE-2008-1804
2008-05-2213:09:00
Debian Security Bug Tracker
security-tracker.debian.org
11
0.02 Low
EPSS
Percentile
88.9%
preprocessors/spp_frag3.c in Sourcefire Snort before 2.8.1 does not properly identify packet fragments that have dissimilar TTL values, which allows remote attackers to bypass detection rules by using a different TTL for each fragment.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 11 | all | snort | < 2.7.0-20 | snort_2.7.0-20_all.deb |
| Debian | 10 | all | snort | < 2.7.0-20 | snort_2.7.0-20_all.deb |
| Debian | 999 | all | snort | < 2.7.0-20 | snort_2.7.0-20_all.deb |
Related
prion
prion
Design/Logic Flaw
2008-05-22 13:09:00
nessus
nessus
Fedora 8 : snort-2.8.1-3.fc8 (2008-5001)
2008-06-09 00:00:00
Mandriva Linux Security Advisory : snort (MDVSA-2009:259-1)
2009-10-08 00:00:00
Fedora 9 : snort-2.8.1-3.fc9 (2008-4986)
2008-06-09 00:00:00
securityvulns
securityvulns
iDefense Security Advisory 05.21.08: Multiple Vendor Snort IP Fragment TTL Evasion Vulnerability
2008-05-22 00:00:00
snort IDS protection bypass
2008-05-22 00:00:00
fedora
fedora
[SECURITY] Fedora 8 Update: snort-2.8.1-3.fc8
2008-06-06 07:49:11
[SECURITY] Fedora 9 Update: snort-2.8.1-3.fc9
2008-06-06 07:47:58
[SECURITY] Fedora 7 Update: snort-2.8.1-3.fc7
2008-06-06 07:52:27
openvas
openvas
Mandrake Security Advisory MDVSA-2009:259 (snort)
2009-10-13 00:00:00
Fedora Update for snort FEDORA-2008-4986
2009-02-17 00:00:00
Fedora Update for snort FEDORA-2008-5001
2009-02-17 00:00:00
seebug
seebug
Snort碎片重组TTL值导致漏报漏洞
2008-05-23 00:00:00
ubuntucve
ubuntucve
CVE-2008-1804
2008-05-22 00:00:00
cvelist
cvelist
CVE-2008-1804
2008-05-22 10:00:00
cve
cve
CVE-2008-1804
2008-05-22 13:09:00