Snort Security Vulnerabilities and Issues — Snort CVE List

Lucene search

SourcefireSnort

5 matches found

CVE•added 2003/05/05 4:0 a.m.•52 views

CVE-2003-0209

Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and earlier allows remote attackers to execute arbitrary code via large sequence numbers in packets, which enable a heap-based buffer overflow.

10CVSS7.8AI score0.64409EPSS

CVE•added 2005/10/18 9:2 p.m.•49 views

CVE-2005-3252

Stack-based buffer overflow in the Back Orifice (BO) preprocessor for Snort before 2.4.3 allows remote attackers to execute arbitrary code via a crafted UDP packet.

7.5CVSS7.7AI score0.83516EPSS

CVE•added 2005/12/18 10:0 p.m.•46 views

CVE-2004-2652

The DecodeTCPOptions function in decode.c in Snort before 2.3.0, when printing TCP/IP options using FAST output or verbose mode, allows remote attackers to cause a denial of service (crash) via packets with invalid TCP/IP options, which trigger a null dereference.

7.8CVSS6.7AI score0.22655EPSS

CVE•added 2006/02/22 2:2 a.m.•44 views

CVE-2006-0839

The frag3 preprocessor in Sourcefire Snort 2.4.3 does not properly reassemble certain fragmented packets with IP options, which allows remote attackers to evade detection of certain attacks, possibly related to IP option lengths.

5CVSS6.7AI score0.00392EPSS

CVE•added 2006/06/02 10:18 a.m.•42 views

CVE-2006-2769

The HTTP Inspect preprocessor (http_inspect) in Snort 2.4.0 through 2.4.4 allows remote attackers to bypass "uricontent" rules via a carriage return (\r) after the URL and before the HTTP declaration.

5CVSS6.5AI score0.20455EPSS