Unrated severityNVD Advisory· Published Jan 16, 2007· Updated Apr 23, 2026

CVE-2006-6931

Description

Algorithmic complexity vulnerability in Snort before 2.6.1, during predicate evaluation in rule matching for certain rules, allows remote attackers to cause a denial of service (CPU consumption and detection outage) via crafted network traffic, aka a "backtracking attack."

Affected products

Snort/Snort
cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*
Range: <=2.6.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.acsac.org/2006/papers/54.pdfnvdVendor Advisory
www.cs.wisc.edu/~smithr/pubs/acsac2006.pdfnvdVendor Advisory
lists.immunitysec.com/pipermail/dailydave/2007-January/003954.htmlnvd
secunia.com/advisories/23716nvd
secunia.com/advisories/24164nvd
secunia.com/advisories/24338nvd
security.gentoo.org/glsa/glsa-200702-03.xmlnvd
securitytracker.com/idnvd
www.acsac.org/2006/abstracts/54.htmlnvd
www.acsac.org/2006/advance_program.htmlnvd
www.cs.wisc.edu/~smithr/pubs/randy_smith_acsac2006.zipnvd
www.mandriva.com/security/advisoriesnvd
www.osvdb.org/32096nvd
www.securityfocus.com/bid/21991nvd
www.snort.org/pub-bin/snortnews.cginvd
exchange.xforce.ibmcloud.com/vulnerabilities/31430nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.004
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000