CVE-2007-0251
First published: Tue Jan 16 2007(Updated: )
Integer underflow in the DecodeGRE function in src/decode.c in Snort 2.6.1.2 allows remote attackers to trigger dereferencing of certain memory locations via crafted GRE packets, which may cause corruption of log files or writing of sensitive information into log files.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Snort Snort | =2.6.1.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://labs.calyptix.com/advisories/CX-2007-01.txt
- http://osvdb.org/32095
- http://osvdb.org/33464
- http://securityreason.com/securityalert/2165
- http://securitytracker.com/id?1017507
- http://www.securityfocus.com/archive/1/456598/100/0/threaded
- http://www.securityfocus.com/bid/22004
- http://www.snort.org/got_source/source.html
- http://www.vupen.com/english/advisories/2007/0152
- collector/nvd-index
- collector/nvd-historical
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/author
- agent/type
- agent/references
- agent/description
- agent/event
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/snort
- canonical/snort snort
- version/snort snort/2.6.1.2