Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0209

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2003-0209
Last Modified 10 Sep 2008 03:18:15
Published 05 May 2003 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0209

Summary

Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and earlier allows remote attackers to execute arbitrary code via large sequence numbers in packets, which enable a heap-based buffer overflow.

Vulnerable Systems

Application

  • Smoothwall 2.0 Beta 4

  • Sourcefire Snort 1.8

  • Sourcefire Snort 1.8.1

  • Sourcefire Snort 1.8.2

  • Sourcefire Snort 1.8.3

  • Sourcefire Snort 1.8.4

  • Sourcefire Snort 1.8.5

  • Sourcefire Snort 1.8.6

  • Sourcefire Snort 1.8.7

  • Sourcefire Snort 1.9

  • Sourcefire Snort 1.9.1


References

CERT-VN - VU#139129

CERT - CA-2003-13

BID - 7178

DEBIAN - DSA-297

MISC - http://www.coresecurity.com/common/showdoc.php?idx=313&idxseccion=10

ENGARDE - ESA-20030430-013

BUGTRAQ - 20030428 GLSA: snort (200304-06)

BUGTRAQ - 20030423 Snort <=1.9.1 exploit

BUGTRAQ - 20030422 GLSA: snort (200304-05)

BUGTRAQ - 20030415 CORE-2003-0307: Snort TCP Stream Reassembly Integer Overflow Vulnerability

MANDRAKE - MDKSA-2003:052


Last Updated: 27 May 2016 10:37:49