CVSS: 7.5EPSS: 4%CPEs: 4EXPL: 1CVE-2007-1398 – Snort 2.6.1.1/2.6.1.2/2.7.0 - 'fragementation' Remote Denial of Service
https://notcve.org/view.php?id=CVE-2007-1398
10 Mar 2007 — The frag3 preprocessor in Snort 2.6.1.1, 2.6.1.2, and 2.7.0 beta, when configured for inline use on Linux without the ip_conntrack module loaded, allows remote attackers to cause a denial of service (segmentation fault and application crash) via certain UDP packets produced by send_morefrag_packet and send_overlap_packet. El preprocesador en Snort 2.6.1.1, 2.6.1.2, y 2.7.0 beta, cuando se configura para usuarios inline usado sobre Linux sin el modulo cargado ip_conntrack, permite a atacantes remotos provoca... • https://www.exploit-db.com/exploits/3434 •
CVSS: 10.0EPSS: 87%CPEs: 10EXPL: 4CVE-2006-5276 – Snort 2.6.1 (Linux) - DCE/RPC Preprocessor Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2006-5276
20 Feb 2007 — Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic. Desbordamiento de búfer en el preprocesador DCE/RPC en Snort anterior a 2.6.1.3, y 2.7 anterior a beta 2; y Sourcefire Intrusion Sensor;permite a atacantes remotos ejecutar código de su elección mediante tráfico SMB manipulado. • https://www.exploit-db.com/exploits/3609 •
CVSS: 7.8EPSS: 2%CPEs: 1EXPL: 0CVE-2007-0251
https://notcve.org/view.php?id=CVE-2007-0251
16 Jan 2007 — Integer underflow in the DecodeGRE function in src/decode.c in Snort 2.6.1.2 allows remote attackers to trigger dereferencing of certain memory locations via crafted GRE packets, which may cause corruption of log files or writing of sensitive information into log files. Desbordamiento inferior de entero en la función DecodeGRE en src/decode.c en Snort 2.6.1.2 permite a atacantes remotos provocar referencias a ciertas localizaciones de memoria mediante paquetes GRE artesanales, lo cual puede causar la corrup... • http://labs.calyptix.com/advisories/CX-2007-01.txt •
CVSS: 7.5EPSS: 3%CPEs: 1EXPL: 0CVE-2006-6931
https://notcve.org/view.php?id=CVE-2006-6931
16 Jan 2007 — Algorithmic complexity vulnerability in Snort before 2.6.1, during predicate evaluation in rule matching for certain rules, allows remote attackers to cause a denial of service (CPU consumption and detection outage) via crafted network traffic, aka a "backtracking attack." Vulnerabilidad de complejidad algorítmica en Snort anterior a 2.6.1, durante la evaluación de un predicado en el chequeo de reglas para ciertas reglas, permite a atacantes remotos provocar una denegación de servicio (consumo de CPU y para... • http://lists.immunitysec.com/pipermail/dailydave/2007-January/003954.html •
CVSS: 7.5EPSS: 17%CPEs: 5EXPL: 5CVE-2006-2769 – Snort 2.4.x - URIContent Rules Detection Evasion
https://notcve.org/view.php?id=CVE-2006-2769
02 Jun 2006 — The HTTP Inspect preprocessor (http_inspect) in Snort 2.4.0 through 2.4.4 allows remote attackers to bypass "uricontent" rules via a carriage return (\r) after the URL and before the HTTP declaration. El preprocesador HTTP Inspect (http_inspect) en Snort 2.4.0 hasta la versión 2.4.4 permite a atacantes remotos eludir reglas "uricontent" a través de un retorno de carro (\r) después de la URL y antes de la declaración HTTP. • https://www.exploit-db.com/exploits/27931 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2006-0839
https://notcve.org/view.php?id=CVE-2006-0839
22 Feb 2006 — The frag3 preprocessor in Sourcefire Snort 2.4.3 does not properly reassemble certain fragmented packets with IP options, which allows remote attackers to evade detection of certain attacks, possibly related to IP option lengths. • http://secunia.com/advisories/18959 •
CVSS: 9.8EPSS: 83%CPEs: 3EXPL: 5CVE-2005-3252 – Snort 2.4.2 - Back Orifice Pre-Preprocessor Remote
https://notcve.org/view.php?id=CVE-2005-3252
18 Oct 2005 — Stack-based buffer overflow in the Back Orifice (BO) preprocessor for Snort before 2.4.3 allows remote attackers to execute arbitrary code via a crafted UDP packet. • https://www.exploit-db.com/exploits/1314 •
CVSS: 7.8EPSS: 19%CPEs: 4EXPL: 7CVE-2004-2652 – Snort 2.1/2.2 - DecodeTCPOptions Remote Denial of Service
https://notcve.org/view.php?id=CVE-2004-2652
31 Dec 2004 — The DecodeTCPOptions function in decode.c in Snort before 2.3.0, when printing TCP/IP options using FAST output or verbose mode, allows remote attackers to cause a denial of service (crash) via packets with invalid TCP/IP options, which trigger a null dereference. • https://www.exploit-db.com/exploits/25046 •
CVSS: 10.0EPSS: 64%CPEs: 11EXPL: 2CVE-2003-0209 – Snort 1.9.1 - 'p7snort191.sh' Remote Command Execution
https://notcve.org/view.php?id=CVE-2003-0209
16 Apr 2003 — Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and earlier allows remote attackers to execute arbitrary code via large sequence numbers in packets, which enable a heap-based buffer overflow. Desbordamiento de enteros en el modulo de reensamblaje TCP (stream4) de Snort 2.0 y anteriores permite a atacantes remotos ejecutar código arbitrario mediante números de secuencia largo en paquetes, lo que permite un desbordamiento de búfer basado en el montón. • https://www.exploit-db.com/exploits/18 •
CVSS: 10.0EPSS: 51%CPEs: 9EXPL: 0CVE-2003-0033
https://notcve.org/view.php?id=CVE-2003-0033
07 Mar 2003 — Buffer overflow in the RPC preprocessor for Snort 1.8 and 1.9.x before 1.9.1 allows remote attackers to execute arbitrary code via fragmented RPC packets. Desbordamiento de búfer en el preprocesador RPC de Snort 1.8 y 1.9.x anteriores a la 1.9.1 permite a atacantes remotos la ejecución arbitraria de código mediante paquetes RPC fragmentados. • http://marc.info/?l=bugtraq&m=104673386226064&w=2 •