Results 1 to 7 of 7

Thread: Heads up on SNORT

Thread Tools
- Show Printable Version
Display
- Switch to Linear Mode
- Hybrid Mode
- Switch to Threaded Mode

Hybrid View

February 27th, 2006, 09:19 PM #1
DjM

View Profile

View Forum Posts

Visit Homepage
I'd rather be fishing

Join Date

Aug 2001

Location

The Great White North

Posts

1,867
Heads up on SNORT

Posted today:

A vulnerability in Snort has been reported, which potentially can be exploited by malicious people to bypass certain security restrictions.
The vulnerability is caused due to an error in the frag3 preprocessor which causes snort to skip "ip_option_length" bytes from the end of the IP options when reassembling a packet. This can potentially be exploited to bypass signature detection via certain specially-crafted fragmented packets.
The vulnerability has been reported in version 2.4.3. Other versions may also be affected.

posted HERE

Cheers:

DjM
Reply With Quote

Quick Navigation IDS & Scanner Discussions Top

« Previous Thread | Next Thread »

Posting Permissions

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
[VIDEO] code is On
HTML code is Off

Forum Rules

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

Thread: Heads up on SNORT

Thread Tools

Display

Hybrid View

Heads up on SNORT

Posting Permissions