Known Vulnerabilities for products from Sourcefire

Listed below are 8 of the newest known vulnerabilities associated with the vendor "Sourcefire".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2010-2306	The default installation of Sourcefire 3D Sensor 1000, 2000, and 9900; and Defense Center 1000; uses the same static, private...	4.3 - MEDIUM	2010-06-16	2018-10-10
CVE-2009-2344	The web-based management interfaces in Sourcefire Defense Center (DC) and 3D Sensor before 4.8.2 allow remote authenticated u...	9 - HIGH	2009-07-07	2018-10-10
CVE-2006-5276	Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrus...	10 - HIGH	2007-02-20	2018-10-17
CVE-2006-2769	The HTTP Inspect preprocessor (http_inspect) in Snort 2.4.0 through 2.4.4 allows remote attackers to bypass "uricontent" rule...	5 - MEDIUM	2006-06-02	2018-10-18
CVE-2006-0839	The frag3 preprocessor in Sourcefire Snort 2.4.3 does not properly reassemble certain fragmented packets with IP options, whi...	5 - MEDIUM	2006-02-22	2018-10-18
CVE-2005-3252	Stack-based buffer overflow in the Back Orifice (BO) preprocessor for Snort before 2.4.3 allows remote attackers to execute a...	7.5 - HIGH	2005-10-18	2011-03-08
CVE-2004-2652	The DecodeTCPOptions function in decode.c in Snort before 2.3.0, when printing TCP/IP options using FAST output or verbose mo...	7.8 - HIGH	2004-12-31	2017-07-20
CVE-2003-0209	Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and earlier allows remote attackers to execute a...	10 - HIGH	2003-05-05	2016-10-18