7.8

CVE-2007-0251

Integer underflow in the DecodeGRE function in src/decode.c in Snort 2.6.1.2 allows remote attackers to trigger dereferencing of certain memory locations via crafted GRE packets, which may cause corruption of log files or writing of sensitive information into log files.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SnortSnort Version2.6.1.2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.33% 0.813
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 10 6.9
AV:N/AC:L/Au:N/C:N/I:N/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://labs.calyptix.com/advisories/CX-2007-01.txt
http://osvdb.org/32095
http://osvdb.org/33464
http://securityreason.com/securityalert/2165
http://securitytracker.com/id?1017507
http://www.securityfocus.com/archive/1/456598/100/0/threaded
http://www.securityfocus.com/bid/22004
http://www.snort.org/got_source/source.html
http://www.vupen.com/english/advisories/2007/0152