2 matches found
CVE-2004-2652
The CVE concerns Snort before 2.3.0, where DecodeTCPOptions in decode.c can crash a system (denial of service) when handling TCP/IP options printed in FAST/verbose mode. The root cause is a null dereference triggered by packets with invalid TCP/IP options. Multiple vendors and issue trackers (NVD...
CVE-2004-2652
The DecodeTCPOptions function in decode.c in Snort before 2.3.0, when printing TCP/IP options using FAST output or verbose mode, allows remote attackers to cause a denial of service crash via packets with invalid TCP/IP options, which trigger a null dereference...