CVE-2006-0839
First published: Wed Feb 22 2006(Updated: )
The frag3 preprocessor in Sourcefire Snort 2.4.3 does not properly reassemble certain fragmented packets with IP options, which allows remote attackers to evade detection of certain attacks, possibly related to IP option lengths.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sourcefire Snort | =2.4.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2006-0839?
CVE-2006-0839 is considered a medium severity vulnerability that allows attackers to evade detection in certain scenarios.
How do I fix CVE-2006-0839?
To fix CVE-2006-0839, upgrade to a newer version of Snort that addresses the vulnerability beyond 2.4.3.
What specific software is affected by CVE-2006-0839?
CVE-2006-0839 specifically affects Sourcefire Snort version 2.4.3.
What type of attacks can CVE-2006-0839 allow remote attackers to evade?
CVE-2006-0839 may allow remote attackers to evade detection of attacks that involve fragmented packets with specific IP options.
Is there a workaround for CVE-2006-0839?
There are no official workarounds for CVE-2006-0839, and upgrading to a more secure version is recommended.
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/author
- agent/tags
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- vendor/sourcefire
- canonical/sourcefire snort
- version/sourcefire snort/2.4.3