Follow @discotekdotca
CVE-2003-0209
Current Description
Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and earlier allows remote attackers to execute arbitrary code via large sequence numbers in packets, which enable a heap-based buffer overflow.
Basic Data
| Published | May 05, 2003 |
|---|---|
| Last Modified | October 18, 2016 |
| Assigner | cve@mitre.org |
| Data Type | CVE |
| Data Format | MITRE |
| Data Version | 4.0 |
| Problem Type | NVD-CWE-Other |
| CVE Data Version | 4.0 |
Base Metric V2
| CVSS 2 - Version | 2.0 |
|---|---|
| CVSS 2 - Vector String | AV:N/AC:L/Au:N/C:C/I:C/A:C |
| CVSS 2 - Access Vector | NETWORK |
| CVSS 2 - Access Complexity | LOW |
| CVSS 2 - Authentication | NONE |
| CVSS 2 - Confidentiality Impact | COMPLETE |
| CVSS 2 - Availability Impact | COMPLETE |
| CVSS 2 - Base Score | 10.0 |
| Severity | HIGH |
| Exploitability Score | 10.0 |
| Impact Score | 10.0 |
| Obtain All Privilege | true |
| Obtain User Privilege | false |
| Obtain Other Privilege | false |
Base Metric V3
No data provided.
Configurations
-
OR - Configuration 1
Cpe Version Part Vendor Product Version Update Edition Language SW Edition Target SW Target HW Other Version Start Including Version End Including Version Start Excluding Version End Excluding 2.3 Application Smoothwall Smoothwall 2.0_beta_4 * * * * * * * � � � � 2.3 Application Sourcefire Snort 1.8 * * * * * * * � � � � 2.3 Application Sourcefire Snort 1.8.1 * * * * * * * � � � � 2.3 Application Sourcefire Snort 1.8.2 * * * * * * * � � � � 2.3 Application Sourcefire Snort 1.8.3 * * * * * * * � � � � 2.3 Application Sourcefire Snort 1.8.4 * * * * * * * � � � � 2.3 Application Sourcefire Snort 1.8.5 * * * * * * * � � � � 2.3 Application Sourcefire Snort 1.8.6 * * * * * * * � � � � 2.3 Application Sourcefire Snort 1.8.7 * * * * * * * � � � � 2.3 Application Sourcefire Snort 1.9 * * * * * * * � � � � 2.3 Application Sourcefire Snort 1.9.1 * * * * * * * � � � �
Vulnerable Software List
| Vendor | Product | Versions |
|---|---|---|
| Smoothwall | Smoothwall | 2.0_beta_4 |
| Sourcefire | Snort | 1.8, 1.8.1, 1.8.2, 1.8.3, 1.8.4, 1.8.5, 1.8.6, 1.8.7, 1.9, 1.9.1 |
References
| Name | Source | URL | Tags |
|---|---|---|---|
| 20030415 CORE-2003-0307: Snort TCP Stream Reassembly Integer Overflow Vulnerability | http://marc.info/?l=bugtraq&m=105043563016235&w=2 | BUGTRAQ | |
| 20030422 GLSA: snort (200304-05) | http://marc.info/?l=bugtraq&m=105103586927007&w=2 | BUGTRAQ | |
| 20030423 Snort <=1.9.1 exploit | http://marc.info/?l=bugtraq&m=105111217731583&w=2 | BUGTRAQ | |
| 20030428 GLSA: snort (200304-06) | http://marc.info/?l=bugtraq&m=105154530427824&w=2 | BUGTRAQ | |
| ESA-20030430-013 | http://marc.info/?l=bugtraq&m=105172790914107&w=2 | ENGARDE | |
| CA-2003-13 | http://www.cert.org/advisories/CA-2003-13.html | CERT | US Government Resource |
| http://www.coresecurity.com/common/showdoc.php?idx=313&idxseccion=10 | http://www.coresecurity.com/common/showdoc.php?idx=313&idxseccion=10 | MISC | |
| DSA-297 | http://www.debian.org/security/2003/dsa-297 | DEBIAN | |
| VU#139129 | http://www.kb.cert.org/vuls/id/139129 | CERT-VN | Third Party Advisory US Government Resource |
| MDKSA-2003:052 | http://www.mandriva.com/security/advisories?name=MDKSA-2003:052 | MANDRAKE | |
| 7178 | http://www.securityfocus.com/bid/7178 | BID | Exploit Patch Vendor Advisory |