exploits , vulnerabilities , articles , Snort Backtracking Denial of Service Vulnerability

Title	Snort Backtracking Denial of Service Vulnerability
Published	2007-01-10-12:00AM
Updated	2007-03-06-08:15PM
Class	Failure to Handle Exceptional Conditions
CVE	CVE-2006-6931
Remote	Yes
Local	No
Credit	Randy Smith, Cristian Estan and Somesh Jha of University of Wisconsin-Madison are credited with the discovery of this vulnerability.
Vulnerable	Snort Project Snort 2.6 .2 Snort Project Snort 2.6 .1 Snort Project Snort 2.4.5 Snort Project Snort 2.4.4 Snort Project Snort 2.4.3 Snort Project Snort 2.4.2 Snort Project Snort 2.4.1 Snort Project Snort 2.4 .0 Snort Project Snort 2.3.3 Snort Project Snort 2.3.2 Snort Project Snort 2.3.1 Snort Project Snort 2.3 .0 Snort Project Snort 2.2 Snort Project Snort 2.1.3 Snort Project Snort 2.1.1 RC1 Snort Project Snort 2.1 .0 Snort Project Snort 2.0.6 Snort Project Snort 2.0.4 Snort Project Snort 2.0 rc2 Snort Project Snort 2.0 .0rc1 Snort Project Snort 2.0 Snort Project Snort 1.9.1 MandrakeSoft Corporate Server 2.1 MandrakeSoft Linux Mandrake 9.1 ppc MandrakeSoft Linux Mandrake 9.1 MandrakeSoft Linux Mandrake 9.0 MandrakeSoft Linux Mandrake 8.2 ppc MandrakeSoft Linux Mandrake 8.2 MandrakeSoft Multi Network Firewall 2.0 Snort Project Snort 1.9 Gentoo Linux 1.4 _rc3 Gentoo Linux 1.4 _rc2 Snort Project Snort 1.8.7 Snort Project Snort 1.8.6 Snort Project Snort 1.8.5 Snort Project Snort 1.8.4 beta1 Debian Linux 3.0 sparc Debian Linux 3.0 s/390 Debian Linux 3.0 ppc Debian Linux 3.0 mipsel Debian Linux 3.0 mips Debian Linux 3.0 m68k Debian Linux 3.0 ia64 Debian Linux 3.0 ia32 Debian Linux 3.0 hppa Debian Linux 3.0 arm Debian Linux 3.0 alpha Debian Linux 3.0 Snort Project Snort 1.8.4 Snort Project Snort 1.8.3 Snort Project Snort 1.8.2 Snort Project Snort 1.8.1 Snort Project Snort 1.8 Conectiva Linux 8.0 Snort Project Snort 1.7 Snort Project Snort 1.6.3 Snort Project Snort 1.6.2 Snort Project Snort 1.6.1 Snort Project Snort 1.6 Snort Project Snort 1.5.2 Snort Project Snort 1.5.1 Snort Project Snort 1.5 MandrakeSoft Multi Network Firewall 2.0 MandrakeSoft Linux Mandrake 2006.0 x86_64 MandrakeSoft Linux Mandrake 2006.0 MandrakeSoft Linux Mandrake 2007.0 x86_64 MandrakeSoft Linux Mandrake 2007.0 MandrakeSoft Corporate Server 4.0 x86_64 MandrakeSoft Corporate Server 4.0 Gentoo netanalyzer/snort 2.6.1
Not Vulnerable	Snort Project Snort 2.6.1
Code	An attacker can exploit this issue by using standard network utilities.
TXT

Vulnerabilities - newest 10 RSS | More

• 2009-12-17 Zen Cart Insecure File and Programs Information Disclosure and Database Deletion Vulnerability
• 2009-12-17 Winamp Module Decoder Plugin Multiple Buffer Overflow Vulnerabilities
• 2009-12-17 Winamp JPEG and PNG Multiple Integer Overflow Vulnerabilities
• 2009-12-17 HP OpenView Storage Data Protector Stack Buffer Overflow Vulnerability
• 2009-12-17 IBM WebSphere Application Server Feature Pack for CEA Spoofing Vulnerability
• 2009-12-17 Digital Scribe Cross Site Scripting and SQL Injection Vulnerabilities
• 2009-12-17 WP-Forum WordPress Plugin Multiple SQL Injection Vulnerabilities
• 2009-12-17 Quick Heal AntiVirus Insecure Program File Permissions Local Privilege Escalation Vulnerability
• 2009-12-17 IntelliCom NetBiter webSCADA Multiple Default Password Security Bypass Vulnerabilities
• 2009-12-17 Webmatic Multiple Unspecified SQL Injection and Cross-Site Scripting Vulnerabilities

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Fri, 18 Dec 2009 08:22:39 +0000