Snort/Sourcefire DCE/RPC Packet Reassembly Stack Buffer Overflow Vulnerability

Snort/Sourcefire DCE/RPC Packet Reassembly Stack Buffer Overflow Vulnerability

Snort IDS and Sourcefire Intrusion Sensor are prone to a stack-based buffer-overflow vulnerability because the network intrusion detection (NID) systems fail to handle specially crafted 'DCE' and 'RPC' network packets.

An attacker can exploit this issue to execute malicious code in the context of the user running the affected application. Failed attempts will likely cause these applications to crash.