VYPR
Vendor

Sourcefire

Products
8
CVEs
9
Across products
15
Status
Private

Products

8

Recent CVEs

9
  • CVE-2005-3252Oct 18, 2005
    risk 0.10cvss epss 0.83

    Stack-based buffer overflow in the Back Orifice (BO) preprocessor for Snort before 2.4.3 allows remote attackers to execute arbitrary code via a crafted UDP packet.

  • CVE-2006-5276Feb 20, 2007
    risk 0.09cvss epss 0.79

    Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic.

  • CVE-2003-0209May 5, 2003
    risk 0.06cvss epss 0.38

    Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and earlier allows remote attackers to execute arbitrary code via large sequence numbers in packets, which enable a heap-based buffer overflow.

  • CVE-2009-2344Jul 7, 2009
    risk 0.04cvss epss 0.09

    The web-based management interfaces in Sourcefire Defense Center (DC) and 3D Sensor before 4.8.2 allow remote authenticated users to gain privileges via a $admin value for the admin parameter in an edit action to admin/user/user.cgi and unspecified other components.

  • CVE-2006-2769Jun 2, 2006
    risk 0.04cvss epss 0.11

    The HTTP Inspect preprocessor (http_inspect) in Snort 2.4.0 through 2.4.4 allows remote attackers to bypass "uricontent" rules via a carriage return (\r) after the URL and before the HTTP declaration.

  • CVE-2004-2652Dec 31, 2004
    risk 0.04cvss epss 0.11

    The DecodeTCPOptions function in decode.c in Snort before 2.3.0, when printing TCP/IP options using FAST output or verbose mode, allows remote attackers to cause a denial of service (crash) via packets with invalid TCP/IP options, which trigger a null dereference.

  • CVE-2010-2306Jun 16, 2010
    risk 0.00cvss epss 0.01

    The default installation of Sourcefire 3D Sensor 1000, 2000, and 9900; and Defense Center 1000; uses the same static, private SSL keys for multiple devices and installations, which allows remote attackers to decrypt SSL traffic via a man-in-the-middle (MITM) attack.

  • CVE-2008-1804May 22, 2008
    risk 0.00cvss epss 0.02

    preprocessors/spp_frag3.c in Sourcefire Snort before 2.8.1 does not properly identify packet fragments that have dissimilar TTL values, which allows remote attackers to bypass detection rules by using a different TTL for each fragment.

  • CVE-2006-0839Feb 22, 2006
    risk 0.00cvss epss 0.01

    The frag3 preprocessor in Sourcefire Snort 2.4.3 does not properly reassemble certain fragmented packets with IP options, which allows remote attackers to evade detection of certain attacks, possibly related to IP option lengths.