CVE-2009-3641
First published: Thu Oct 22 2009(Updated: )
Snort before 2.8.5.1, when the -v option is enabled, allows remote attackers to cause a denial of service (application crash) via a crafted IPv6 packet that uses the (1) TCP or (2) ICMP protocol.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Snort | <=2.8.3.5 | |
| Snort | =1.6 | |
| Snort | =1.8.0 | |
| Snort | =1.8.1 | |
| Snort | =1.8.2 | |
| Snort | =1.8.3 | |
| Snort | =1.8.4 | |
| Snort | =1.8.5 | |
| Snort | =1.8.6 | |
| Snort | =1.8.7 | |
| Snort | =1.9.0 | |
| Snort | =1.9.1 | |
| Snort | =2.0-beta | |
| Snort | =2.0-rc1 | |
| Snort | =2.6.1 | |
| Snort | =2.6.1.1 | |
| Snort | =2.6.1.2 | |
| Snort | =2.6.2 | |
| Snort | =2.7_beta1 | |
| Snort | =2.8.0 | |
| Snort | =2.8.2.2 | |
| Snort | =2.8.3 | |
| Snort | =2.8.3.1 | |
| Snort | =2.8.3.2 | |
| Snort | =2.8.3.4 | |
| Snort | =2.8.3.4.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://secunia.com/advisories/37135
- http://dl.snort.org/snort-current/release_notes_2851.txt
- http://securitytracker.com/id?1023076
- https://bugzilla.redhat.com/show_bug.cgi?id=530863
- http://www.vupen.com/english/advisories/2009/3014
- http://www.securityfocus.com/bid/36795
- http://vrt-sourcefire.blogspot.com/2009/10/snort-2851-release.html
- http://www.openwall.com/lists/oss-security/2009/10/25/5
- http://marc.info/?l=oss-security&m=125649553414700&w=2
- http://seclists.org/fulldisclosure/2009/Oct/299
- http://www.osvdb.org/59159
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53912
- http://www.snort.org/downloads
- http://secunia.com/advisories/37135/
- http://www.openwall.com/lists/oss-security/2009/10/25/3
- https://access.redhat.com/security/cve/CVE-2009-3641
- http://admin.fedoraproject.org/updates/snort-2.8.5.1-1.fc10
- http://admin.fedoraproject.org/updates/snort-2.8.5.1-1.fc11
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=530863#c8
- https://fedoraproject.org/wiki/Deprecated_packages
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=530863#c10
- https://www.cve.org/CVERecord?id=CVE-2009-3641 https://nvd.nist.gov/vuln/detail/CVE-2009-3641
- https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3641.json
Frequently Asked Questions
What is the severity of CVE-2009-3641?
CVE-2009-3641 has a denial of service impact on affected Snort versions.
How do I fix CVE-2009-3641?
To fix CVE-2009-3641, upgrade to Snort version 2.8.5.1 or later.
What are the affected versions of Snort for CVE-2009-3641?
CVE-2009-3641 affects Snort versions prior to 2.8.5.1, including various earlier versions.
What type of attack does CVE-2009-3641 enable?
CVE-2009-3641 allows remote attackers to exploit a crafted IPv6 packet to cause an application crash.
Is CVE-2009-3641 specific to any protocols?
Yes, CVE-2009-3641 specifically affects TCP and ICMP protocols.
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2009-3641
- collector/redhat-cve
- agent/references
- agent/remedy
- agent/weakness
- agent/author
- agent/description
- agent/severity
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/snort
- canonical/snort
- version/snort/2.8.3.5
- version/snort/1.6
- version/snort/1.8.0
- version/snort/1.8.1
- version/snort/1.8.2
- version/snort/1.8.3
- version/snort/1.8.4
- version/snort/1.8.5
- version/snort/1.8.6
- version/snort/1.8.7
- version/snort/1.9.0
- version/snort/1.9.1
- version/snort/2.0-beta
- version/snort/2.0-rc1
- version/snort/2.6.1
- version/snort/2.6.1.1
- version/snort/2.6.1.2
- version/snort/2.6.2
- version/snort/2.7_beta1
- version/snort/2.8.0
- version/snort/2.8.2.2
- version/snort/2.8.3
- version/snort/2.8.3.1
- version/snort/2.8.3.2
- version/snort/2.8.3.4
- version/snort/2.8.3.4.1