snort

Top products

The 15 most recently published vulnerabilities affecting snort.

• CVE-2023-20246Multiple Cisco products are affected by a vulnerability in Snort access control policies that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system...5.8Nov 1, 2023
• CVE-2021-40114Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability6.8Oct 27, 2021
• CVE-2021-1495Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability5.8Apr 29, 2021
• CVE-2021-1236Multiple Cisco Products Snort Application Detection Engine Policy Bypass Vulnerability5.3Jan 13, 2021
• CVE-2021-1224Multiple Cisco Products Snort TCP Fast Open File Policy Bypass Vulnerability5.8Jan 13, 2021
• CVE-2021-1223Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability7.5Jan 13, 2021
• CVE-2020-3299Multiple Cisco Products SNORT HTTP Detection Engine File Policy Bypass Vulnerability5.8Oct 21, 2020
• CVE-2016-1417Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse tcapi.dll that is located in the sa...8.8Jan 23, 2017
• CVE-2009-3641Snort before 2.8.5.1, when the -v option is enabled, allows remote attackers to cause a denial of service (application crash) via a crafted IPv6 packet that uses the (1) TCP or (2) ICMP protocol.4.3Oct 28, 2009
• CVE-2008-1804preprocessors/spp_frag3.c in Sourcefire Snort before 2.8.1 does not properly identify packet fragments that have dissimilar TTL values, which allows remote attackers to bypass detection rules by us...6.8May 22, 2008
• CVE-2007-1398The frag3 preprocessor in Snort 2.6.1.1, 2.6.1.2, and 2.7.0 beta, when configured for inline use on Linux without the ip_conntrack module loaded, allows remote attackers to cause a denial of servic...7.1Mar 10, 2007
• CVE-2006-5276Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafte...10.0Feb 20, 2007
• CVE-2007-0251Integer underflow in the DecodeGRE function in src/decode.c in Snort 2.6.1.2 allows remote attackers to trigger dereferencing of certain memory locations via crafted GRE packets, which may cause co...7.8Jan 16, 2007
• CVE-2006-6931Algorithmic complexity vulnerability in Snort before 2.6.1, during predicate evaluation in rule matching for certain rules, allows remote attackers to cause a denial of service (CPU consumption and...5.0Jan 16, 2007
• CVE-2001-1558Unknown vulnerability in IP defragmenter (frag2) in Snort before 1.8.3 allows attackers to cause a denial of service (crash).5.0Jul 14, 2005