CVSS: 7.5EPSS: 3%CPEs: 1EXPL: 0CVE-2006-6931
https://notcve.org/view.php?id=CVE-2006-6931
16 Jan 2007 — Algorithmic complexity vulnerability in Snort before 2.6.1, during predicate evaluation in rule matching for certain rules, allows remote attackers to cause a denial of service (CPU consumption and detection outage) via crafted network traffic, aka a "backtracking attack." Vulnerabilidad de complejidad algorítmica en Snort anterior a 2.6.1, durante la evaluación de un predicado en el chequeo de reglas para ciertas reglas, permite a atacantes remotos provocar una denegación de servicio (consumo de CPU y para... • http://lists.immunitysec.com/pipermail/dailydave/2007-January/003954.html •
CVSS: 7.5EPSS: 17%CPEs: 5EXPL: 5CVE-2006-2769 – Snort 2.4.x - URIContent Rules Detection Evasion
https://notcve.org/view.php?id=CVE-2006-2769
02 Jun 2006 — The HTTP Inspect preprocessor (http_inspect) in Snort 2.4.0 through 2.4.4 allows remote attackers to bypass "uricontent" rules via a carriage return (\r) after the URL and before the HTTP declaration. El preprocesador HTTP Inspect (http_inspect) en Snort 2.4.0 hasta la versión 2.4.4 permite a atacantes remotos eludir reglas "uricontent" a través de un retorno de carro (\r) después de la URL y antes de la declaración HTTP. • https://www.exploit-db.com/exploits/27931 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2006-0839
https://notcve.org/view.php?id=CVE-2006-0839
22 Feb 2006 — The frag3 preprocessor in Sourcefire Snort 2.4.3 does not properly reassemble certain fragmented packets with IP options, which allows remote attackers to evade detection of certain attacks, possibly related to IP option lengths. • http://secunia.com/advisories/18959 •