Snort GRE Packet Decoding Integer Underflow Vulnerability
BID:22004
Info
Snort GRE Packet Decoding Integer Underflow Vulnerability
| Bugtraq ID: | 22004 |
| Class: | Design Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 11 2007 12:00AM |
| Updated: | Jan 11 2007 09:50PM |
| Credit: | Chris Rohlf of Calyptix Security discovered this vulnerability. |
| Vulnerable: |
Snort Project Snort 2.6.1 .2 |
| Not Vulnerable: | |
Discussion
Snort GRE Packet Decoding Integer Underflow Vulnerability
Snort is prone to a denial-of-service vulnerability because the network intrusion detection (NID) system fails to handle specially crafted network packets.
An attacker can exploit this issue to corrupt the application's log files and possibly to crash the application (depending on its memory layout).
Snort is prone to a denial-of-service vulnerability because the network intrusion detection (NID) system fails to handle specially crafted network packets.
An attacker can exploit this issue to corrupt the application's log files and possibly to crash the application (depending on its memory layout).
Exploit / POC
Snort GRE Packet Decoding Integer Underflow Vulnerability
An attacker can exploit this issue by using standard network utilities.
An attacker can exploit this issue by using standard network utilities.
Solution / Fix
Snort GRE Packet Decoding Integer Underflow Vulnerability
Solution:
Version 1.131 of 'src/decode.c', as of January 10, 2007 in the Snort CVS repository, contains a fix to address this issue.
Solution:
Version 1.131 of 'src/decode.c', as of January 10, 2007 in the Snort CVS repository, contains a fix to address this issue.
References
Snort GRE Packet Decoding Integer Underflow Vulnerability
References:
References:
- Snort Homepage (Snort Project)
- Calyptix Security Advisory CX-2007-001 - Snort 2.6.1.2 Integer Underflow Vulnera (Calyptix Advisories