Snort 'IPv6' Packet Denial Of Service Vulnerability (Linux) Network Vulnerability

Summary

This host has Snort installed and is prone to Denial of Service vulnerability.

Impact

Successful exploitation could allow attacker to crash an affected application, creating a denial of service condition. Impact Level: Application

Solution

Upgrade to Snort version 2.8.5.1 or later For updates, Refer http://www.snort.org/downloads

Insight

This flaw is caused by an error when processing malformed IPv6 packets when the application is compiled with the '--enable-ipv6' option and is running in verbose mode (-v).

Affected

Snort version prior to 2.8.5.1 on Linux.

References

http://secunia.com/advisories/37135
http://www.vupen.com/english/advisories/2009/3014
http://xforce.iss.net/xforce/xfdb/53912
https://bugzilla.redhat.com/show_bug.cgi?id=530863

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-3641

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P

Related Vulnerabilities

DoSable squid proxy server
Adobe Acrobat PDF File Denial Of Service Vulnerability
ClamAV Hash Manager Off-By-One Denial of Service Vulnerability (Win)
Comodo Internet Security Denial of Service Vulnerability-05
Avahi Denial of Service Vulnerability

Take action and discover your vulnerabilities