PT-2007-1211 · Cisco · Snort
Cristian Estan
+2
·
Published
2007-01-16
·
Updated
2017-07-29
·
CVE-2006-6931
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions:
Snort versions prior to 2.6.1
Description:
The issue allows remote attackers to cause a denial of service, resulting in CPU consumption and detection outage, via crafted network traffic. This is achieved through a backtracking attack during predicate evaluation in rule matching for certain rules.
Recommendations:
For versions prior to 2.6.1, update to version 2.6.1 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Snort