Snort TCP Packet Reassembly Integer Overflow Vulnerability

Bugtraq ID: 7178
Class: Failure to Handle Exceptional Conditions
CVE: CVE-2003-0209
Remote: Yes
Local: No
Published: Apr 15 2003 12:00AM
Updated: Jul 11 2009 09:06PM
Credit: Discovery of this issue is credited to Bruce Leidl, Juan Pablo Martinez Kuhn and Alejandro David Weil from Core Security Technologies.
Vulnerable: Snort Project Snort 1.9.1
+ MandrakeSoft Corporate Server 2.1
+ MandrakeSoft Multi Network Firewall 2.0
+ Mandriva Linux Mandrake 9.1 ppc
+ Mandriva Linux Mandrake 9.1
+ Mandriva Linux Mandrake 9.0
+ Mandriva Linux Mandrake 8.2 ppc
+ Mandriva Linux Mandrake 8.2
Snort Project Snort 1.9
+ Gentoo Linux 1.4 _rc3
+ Gentoo Linux 1.4 _rc2
Snort Project Snort 1.8.7
Snort Project Snort 1.8.6
Snort Project Snort 1.8.5
Snort Project Snort 1.8.4 beta1
+ Debian Linux 3.0 sparc
+ Debian Linux 3.0 s/390
+ Debian Linux 3.0 ppc
+ Debian Linux 3.0 mipsel
+ Debian Linux 3.0 mips
+ Debian Linux 3.0 m68k
+ Debian Linux 3.0 ia-64
+ Debian Linux 3.0 ia-32
+ Debian Linux 3.0 hppa
+ Debian Linux 3.0 arm
+ Debian Linux 3.0 alpha
+ Debian Linux 3.0
Snort Project Snort 1.8.4
Snort Project Snort 1.8.3
Snort Project Snort 1.8.2
Snort Project Snort 1.8.1
Snort Project Snort 1.8
+ Conectiva Linux 8.0
SmoothWall SmoothWall 2.0 beta 4
Not Vulnerable: Snort Project Snort 2.0 .0rc1
Snort Project Snort 2.0


 

Privacy Statement
Copyright 2010, SecurityFocus