Unrated severityNVD Advisory· Published May 22, 2008· Updated Apr 23, 2026
CVE-2008-1804
CVE-2008-1804
Description
preprocessors/spp_frag3.c in Sourcefire Snort before 2.8.1 does not properly identify packet fragments that have dissimilar TTL values, which allows remote attackers to bypass detection rules by using a different TTL for each fragment.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
14- cvs.snort.org/viewcvs.cgi/snort/ChangeLognvd
- cvs.snort.org/viewcvs.cgi/snort/src/preprocessors/spp_frag3.c.diffnvd
- labs.idefense.com/intelligence/vulnerabilities/display.phpnvd
- secunia.com/advisories/30348nvd
- secunia.com/advisories/30563nvd
- secunia.com/advisories/31204nvd
- securitytracker.com/idnvd
- www.ipcop.org/index.phpnvd
- www.securityfocus.com/bid/29327nvd
- www.vupen.com/english/advisories/2008/1602nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/42584nvd
- www.redhat.com/archives/fedora-package-announce/2008-June/msg00156.htmlnvd
- www.redhat.com/archives/fedora-package-announce/2008-June/msg00167.htmlnvd
- www.redhat.com/archives/fedora-package-announce/2008-June/msg00198.htmlnvd
News mentions
0No linked articles in our index yet.