7.8

CVE-2007-0251

EPSS 2.83%
Veröffentlicht 16.01.2007 23:28:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Integer underflow in the DecodeGRE function in src/decode.c in Snort 2.6.1.2 allows remote attackers to trigger dereferencing of certain memory locations via crafted GRE packets, which may cause corruption of log files or writing of sensitive information into log files.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 12

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Snort ≫ Snort Version2.6.1.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	2.83%	0.857

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	10	6.9	AV:N/AC:L/Au:N/C:N/I:N/A:C

http://labs.calyptix.com/advisories/CX-2007-01.txt

http://osvdb.org/32095

http://osvdb.org/33464

http://securityreason.com/securityalert/2165

http://securitytracker.com/id?1017507

http://www.securityfocus.com/archive/1/456598/100/0/threaded

http://www.securityfocus.com/bid/22004

http://www.snort.org/got_source/source.html

http://www.vupen.com/english/advisories/2007/0152

https://nvd.nist.gov/vuln/detail/CVE-2007-0251

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-0251

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-0251

EUVD