10

CVE-2006-5276

Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SnortSnort Version <= 2.6.1.2
SnortSnort Version2.6.1
SnortSnort Version2.6.1.1
SnortSnort Version2.7_beta1
SourcefireIntrusion Sensor Version4.1
SourcefireIntrusion Sensor Version4.1 Editioncrossbeam
SourcefireIntrusion Sensor Version4.5
SourcefireIntrusion Sensor Version4.5 Editioncrossbeam
SourcefireIntrusion Sensor Version4.6
SourcefireIntrusion Sensor Version4.6 Editioncrossbeam
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 79.32% 0.996
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://fedoranews.org/updates/FEDORA-2007-206.shtml
http://iss.net/threats/257.html
Vendor Advisory
http://secunia.com/advisories/24190
http://secunia.com/advisories/24235
http://secunia.com/advisories/24239
http://secunia.com/advisories/24240
http://secunia.com/advisories/24272
http://secunia.com/advisories/26746
http://security.gentoo.org/glsa/glsa-200703-01.xml
http://www.kb.cert.org/vuls/id/196240
US Government Resource
http://www.osvdb.org/32094
http://www.securityfocus.com/archive/1/461810/100/0/threaded
http://www.securityfocus.com/bid/22616
http://www.securitytracker.com/id?1017669
http://www.securitytracker.com/id?1017670
http://www.snort.org/docs/advisory-2007-02-19.html
Vendor Advisory
http://www.us-cert.gov/cas/techalerts/TA07-050A.html
Third Party Advisory
US Government Resource
http://www.vupen.com/english/advisories/2007/0656
http://www.vupen.com/english/advisories/2007/0668
http://www116.nortelnetworks.com/pub/repository/CLARIFY/DOCUMENT/2007/08/021923-01.pdf
http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=540173
https://bugzilla.redhat.com/show_bug.cgi?id=229265
https://exchange.xforce.ibmcloud.com/vulnerabilities/31275
https://www.exploit-db.com/exploits/3362