CVE-2003-0209

CVE-2003-0209 : Snort 2.0 and earlier contains an integer overflow in the TCP stream4 preprocessor used for TCP stream reassembly. This heap-based overflow can be exploited remotely via large TCP sequence numbers to execute arbitrary code, typically as the Snort user (likely root). Multiple sourc...

CVE-2005-3252

CVE-2005-3252 affects Snort’s Back Orifice preprocessor up through version 2.4.3. The vulnerability is a stack-based buffer overflow in the UDP handling of the BO preprocessor, enabling remote code execution. Publicized in multiple advisories and evidenced by exploit/module entries (Metasploit an...

CVE-2004-2652

The CVE concerns Snort before 2.3.0, where DecodeTCPOptions in decode.c can crash a system (denial of service) when handling TCP/IP options printed in FAST/verbose mode. The root cause is a null dereference triggered by packets with invalid TCP/IP options. Multiple vendors and issue trackers (NVD...

CVE-2006-0839

The CVE-2006-0839 entry concerns the frag3 preprocessor in Sourcefire Snort 2.4.3. It states that certain fragmented packets with IP options are not properly reassembled, which can allow remote attackers to evade detection of certain attacks (potentially related to IP option lengths). The existin...

CVE-2006-2769

The CVE-2006-2769 issue affects Snort 2.4.0–2.4.4 and is described in connected sources as an evasion flaw in the http_inspect preprocessor. A carriage return (\r) placed after the URL and before the HTTP declaration can bypass uricontent rules, enabling remote attackers to bypass certain URL con...