Buffer overflow in the RPC preprocessor for Snort 1.8 and 1.9.x before 1.9.1 allows remote attackers to execute arbitrary code via fragmented RPC packets.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Snort | Snort | 1.8.0 (including) | 1.8.0 (including) |
| Snort | Snort | 1.8.1 (including) | 1.8.1 (including) |
| Snort | Snort | 1.8.2 (including) | 1.8.2 (including) |
| Snort | Snort | 1.8.3 (including) | 1.8.3 (including) |
| Snort | Snort | 1.8.4 (including) | 1.8.4 (including) |
| Snort | Snort | 1.8.5 (including) | 1.8.5 (including) |
| Snort | Snort | 1.8.6 (including) | 1.8.6 (including) |
| Snort | Snort | 1.8.7 (including) | 1.8.7 (including) |
| Snort | Snort | 1.9.0 (including) | 1.9.0 (including) |
References
- http://marc.info/?l=bugtraq\u0026m=104673386226064\u0026w=2
- http://marc.info/?l=bugtraq\u0026m=104716001503409\u0026w=2
- http://marc.info/?l=bugtraq\u0026m=105154530427824\u0026w=2
- http://www.cert.org/advisories/CA-2003-13.html
- http://www.debian.org/security/2003/dsa-297
- http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21951
- http://www.iss.net/security_center/static/10956.php
- http://www.kb.cert.org/vuls/id/916785
- http://www.linuxsecurity.com/advisories/engarde_advisory-2944.html
- http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:029
- http://www.osvdb.org/4418
- http://www.securityfocus.com/bid/6963
- http://marc.info/?l=bugtraq\u0026m=104673386226064\u0026w=2
- http://marc.info/?l=bugtraq\u0026m=104716001503409\u0026w=2
- http://marc.info/?l=bugtraq\u0026m=105154530427824\u0026w=2
- http://www.cert.org/advisories/CA-2003-13.html
- http://www.debian.org/security/2003/dsa-297
- http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21951
- http://www.iss.net/security_center/static/10956.php
- http://www.kb.cert.org/vuls/id/916785
- http://www.linuxsecurity.com/advisories/engarde_advisory-2944.html
- http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:029
- http://www.osvdb.org/4418
- http://www.securityfocus.com/bid/6963