- EPSS 20.46%
- Veröffentlicht 02.06.2006 10:18:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
The HTTP Inspect preprocessor (http_inspect) in Snort 2.4.0 through 2.4.4 allows remote attackers to bypass "uricontent" rules via a carriage return (\r) after the URL and before the HTTP declaration.
- EPSS 0.39%
- Veröffentlicht 22.02.2006 02:02:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
The frag3 preprocessor in Sourcefire Snort 2.4.3 does not properly reassemble certain fragmented packets with IP options, which allows remote attackers to evade detection of certain attacks, possibly related to IP option lengths.
CVE-2005-3252
- EPSS 83.52%
- Veröffentlicht 18.10.2005 21:02:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Stack-based buffer overflow in the Back Orifice (BO) preprocessor for Snort before 2.4.3 allows remote attackers to execute arbitrary code via a crafted UDP packet.
CVE-2004-2652
- EPSS 22.66%
- Veröffentlicht 31.12.2004 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
The DecodeTCPOptions function in decode.c in Snort before 2.3.0, when printing TCP/IP options using FAST output or verbose mode, allows remote attackers to cause a denial of service (crash) via packets with invalid TCP/IP options, which trigger a nul...
- EPSS 57.43%
- Veröffentlicht 05.05.2003 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and earlier allows remote attackers to execute arbitrary code via large sequence numbers in packets, which enable a heap-based buffer overflow.