CVE-2007-0251
Summary
| CVE | CVE-2007-0251 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2007-01-16 23:28:00 UTC |
| Updated | 2018-10-16 16:32:00 UTC |
| Description | Integer underflow in the DecodeGRE function in src/decode.c in Snort 2.6.1.2 allows remote attackers to trigger dereferencing of certain memory locations via crafted GRE packets, which may cause corruption of log files or writing of sensitive information into log files. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| 32095 | OSVDB | osvdb.org | |
| Calyptix Your Simple and Powerful Network Security Solution | MISC | labs.calyptix.com | |
| Snort GRE Packet Decoding Integer Underflow Vulnerability | BID | www.securityfocus.com | |
| Just a moment... | CONFIRM | www.snort.org | |
| SecurityFocus | BUGTRAQ | www.securityfocus.com | |
| SecurityTracker.com Archives - Snort Integer Underflow in Processing the GRE Protocol May Let Remote Users Corrupt Log Files | SECTRACK | securitytracker.com | |
| SecurityReason - Snort 2.6.1.2 Integer Underflow Vulnerability | SREASON | securityreason.com | |
| 33464 | OSVDB | osvdb.org | |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.