Snort TCP/IP Options Denial of Service Vulnerability

Sunday, December 26th, 2004
by Marc Erickson

Secunia Advisory: SA13664

Critical: Moderately critical

Impact: DoS

Where: From remote

Solution Status: Vendor Patch

Software: Snort 2.2.x

Description: Marcin Zgorecki has reported a vulnerability in Snort, which can be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to an error in the printing of TCP/IP options. This can be exploited to cause an unspecified DoS by sending a specially crafted packet.

Successful exploitation requires that snort is configured with “FAST” output or verbose mode.

The vulnerability has been reported in version 2.2.10. Other versions may also be affected.

Solution: Update to 2.3.0-RC1 or later.

http://www.snort.org/dl/

Tags

Categories

Security

What Do You Think?

Want to Start a Blog Here for Free?

Are you an expert in one subject or another? If your goal is to help others and dispense hard-earned information back to the community, stake a claim on your very own Lockergnome blog today! You can write about anything - no matter the topic. Sign-up to start blogging!

Tips - Jul 23, 2008

Troubleshooting Encryption In Vista Part I

Why Was It Removed?
Tuesday, July 22, 2008
Touch Screen Computing - The Future?
Tuesday, July 22, 2008
Troubleshooting User Network Performance Issues With SolarWinds
Tuesday, July 22, 2008
Setting Up Encryption In Vista Part III
Tuesday, July 22, 2008
The Essential Guide To Solving Server Sprawl
Tuesday, July 22, 2008

GnomeREPORT - Jul 18, 2008

It Is Windows Only Smaller

Security Monkey?
Friday, July 18, 2008
Setting Up Encryption In Vista Part II
Friday, July 18, 2008
Free Subscription To The Scientist
Friday, July 18, 2008
MS Exchange For The Common Man
Wednesday, July 16, 2008
SolarWinds: Free Exchange Monitor Tool
Wednesday, July 16, 2008

Business, Microsoft, Resources - Jul 15, 2008

Microsoft Mobile Business Resource Kit

Palm Treo - We Care Why?
Monday, July 14, 2008
Apple Update-A-Palooza
Monday, July 14, 2008
Planning For Encryption In Vista Part I
Monday, July 14, 2008
Vulnerability Management For Dummies
Monday, July 14, 2008
Faster Internet, Anyone?
Friday, July 11, 2008

Microsoft - Jul 11, 2008

Hyper-V Now Available For Windows Server

Encryption Technologies In Vista Part II
Friday, July 11, 2008
FierceVoIP
Friday, July 11, 2008
Yahoo Opens Up Search - Will It Matter Though?
Thursday, July 10, 2008
Vista - It Is As Good As It Will Get
Thursday, July 10, 2008
Encryption Technologies In Vista Part I
Thursday, July 10, 2008