Snort 'IPv6' Packet Denial Of Service Vulnerability (Linux) Network Vulnerability

Summary

This host has Snort installed and is prone to Denial of Service vulnerability.

Impact

Successful exploitation could allow attacker to crash an affected application, creating a denial of service condition. Impact Level: Application

Solution

Upgrade to Snort version 2.8.5.1 or later For updates, Refer http://www.snort.org/downloads

Insight

This flaw is caused by an error when processing malformed IPv6 packets when the application is compiled with the '--enable-ipv6' option and is running in verbose mode (-v).

Affected

Snort version prior to 2.8.5.1 on Linux.

References

http://secunia.com/advisories/37135
http://www.vupen.com/english/advisories/2009/3014
http://xforce.iss.net/xforce/xfdb/53912
https://bugzilla.redhat.com/show_bug.cgi?id=530863

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-3641
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Apple iTunes Multiple Vulnerabilities
ClamAV Recursion Level Handling Denial of Service Vulnerability (Windows)
Apple Safari WebKit Property Memory Leak Remote DoS Vulnerability
DB2 DOS
Asterisk RTP Text Frames Denial Of Service Vulnerability

Take action and discover your vulnerabilities