4.3

CVE-2009-3641

Exploit
Snort before 2.8.5.1, when the -v option is enabled, allows remote attackers to cause a denial of service (application crash) via a crafted IPv6 packet that uses the (1) TCP or (2) ICMP protocol.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SnortSnort Version <= 2.8.3.5
SnortSnort Version1.6
SnortSnort Version1.8.0
SnortSnort Version1.8.1
SnortSnort Version1.8.2
SnortSnort Version1.8.3
SnortSnort Version1.8.4
SnortSnort Version1.8.5
SnortSnort Version1.8.6
SnortSnort Version1.8.7
SnortSnort Version1.9.0
SnortSnort Version1.9.1
SnortSnort Version2.0 Updatebeta
SnortSnort Version2.0 Updaterc1
SnortSnort Version2.6.1
SnortSnort Version2.6.1.1
SnortSnort Version2.6.1.2
SnortSnort Version2.6.2
SnortSnort Version2.7_beta1
SnortSnort Version2.8.0
SnortSnort Version2.8.2.2
SnortSnort Version2.8.3
SnortSnort Version2.8.3.1
SnortSnort Version2.8.3.2
SnortSnort Version2.8.3.4
SnortSnort Version2.8.3.4.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 38.78% 0.984
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://dl.snort.org/snort-current/release_notes_2851.txt
Vendor Advisory
http://marc.info/?l=oss-security&m=125649553414700&w=2
http://seclists.org/fulldisclosure/2009/Oct/299
Patch
Exploit
http://secunia.com/advisories/37135
Vendor Advisory
http://securitytracker.com/id?1023076
http://vrt-sourcefire.blogspot.com/2009/10/snort-2851-release.html
Patch
http://www.openwall.com/lists/oss-security/2009/10/25/5
http://www.osvdb.org/59159
http://www.securityfocus.com/bid/36795
Patch
Exploit
http://www.vupen.com/english/advisories/2009/3014
Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=530863
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/53912