EUVD-2006-0845

Malware in sbrugna...

Preemptive Protection against Snort Inline Fragmentation Denial of Service Vulnerability

Snort is an open source network intrusion prevention and detection system. The frag3 preprocessor in Snort when configured for inline use on Linux is prone to a denial of service vulnerability. A remote attacker could exploit this issue to cause the application to crash on a target system...

CVE-2007-1398

The frag3 preprocessor in Snort 2.6.1.1, 2.6.1.2, and 2.7.0 beta, when configured for inline use on Linux without the ipconntrack module loaded, allows remote attackers to cause a denial of service segmentation fault and application crash via certain UDP packets produced by sendmorefragpacket and...

Code injection

The frag3 preprocessor in Snort 2.6.1.1, 2.6.1.2, and 2.7.0 beta, when configured for inline use on Linux without the ipconntrack module loaded, allows remote attackers to cause a denial of service segmentation fault and application crash via certain UDP packets produced by sendmorefragpacket and...

CVE-2007-1398

The frag3 preprocessor in Snort 2.6.1.1, 2.6.1.2, and 2.7.0 beta, when configured for inline use on Linux without the ipconntrack module loaded, allows remote attackers to cause a denial of service segmentation fault and application crash via certain UDP packets produced by sendmorefragpacket and...

CVE-2007-1398

The CVE-2007-1398 entry concerns the frag3 preprocessor in Snort relevant to inline mode on Linux without ip_conntrack. Affected versions include Snort 2.6.1.1, 2.6.1.2, and 2.7.0 beta. The underlying issue is a denial-of-service caused by certain UDP packets generated via send_morefrag_packet an...

snort-dos.txt

/ DOS Snort Inline Affected Versions: 2.6.1.1, 2.6.1.2, 2.7.0beta Requirements : Frag3 Enabled, Inline, Linux, ipconntrack disabled Antimatt3r [email protected] Offset needs to be supplied that would cause reassembly for different snort fragmentation reassembly policies. Since the first packet...

Snort 2.6.1.12.6.1.22.7.0 - fragementation Remote Denial of Service

Snort 2.6.1.12.6.1.22.7.0 - fragementation Remote Denial of Service / DOS Snort Inline Affected Versions: 2.6.1.1, 2.6.1.2, 2.7.0beta Requirements : Frag3 Enabled, Inline, Linux, ipconntrack disabled Antimatt3r [email protected] Offset needs to be supplied that would cause reassembly for...

CVE-2006-0839

The frag3 preprocessor in Sourcefire Snort 2.4.3 does not properly reassemble certain fragmented packets with IP options, which allows remote attackers to evade detection of certain attacks, possibly related to IP option lengths...

CVE-2006-0839

The frag3 preprocessor in Sourcefire Snort 2.4.3 does not properly reassemble certain fragmented packets with IP options, which allows remote attackers to evade detection of certain attacks, possibly related to IP option lengths...

CVE-2006-0839

The CVE-2006-0839 entry concerns the frag3 preprocessor in Sourcefire Snort 2.4.3. It states that certain fragmented packets with IP options are not properly reassembled, which can allow remote attackers to evade detection of certain attacks (potentially related to IP option lengths). The existin...

Snort 2.x - PrintTcpOptions Remote Denial of Service

// source: https://www.securityfocus.com/bid/14811/info Snort is reported prone to a remote denial of service vulnerability. The vulnerability is reported to exist in the 'PrintTcpOptions' function of 'log.c', and is a result of a failure to sufficiently handle malicious TCP packets. A remote...

Snort 2.x - PrintTcpOptions Remote Denial of Service

Snort 2.x - PrintTcpOptions Remote Denial of Service // source: https://www.securityfocus.com/bid/14811/info Snort is reported prone to a remote denial of service vulnerability. The vulnerability is reported to exist in the 'PrintTcpOptions' function of 'log.c', and is a result of a failure to...