Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    50 vulnerabilities by snort

    VAR-200702-0378

    Vulnerability from variot - Updated: 2024-07-23 22:43

    Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic. Snort IDS and Sourcefire Intrusion Sensor are prone to a stack-based buffer-overflow vulnerability because the network intrusion detection (NID) systems fail to handle specially crafted 'DCE' and 'RPC' network packets. An attacker can exploit this issue to execute malicious code in the context of the user running the affected application. Failed attempts will likely cause these applications to crash. The software provides functions such as packet sniffing, packet analysis, and packet inspection. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

                     National Cyber Alert System
    
               Technical Cyber Security Alert TA07-050A
    

    Sourcefire Snort DCE/RPC Preprocessor Buffer Overflow

    Original release date: February 19, 2007 Last revised: -- Source: US-CERT

    Systems Affected

     * Snort 2.6.1, 2.6.1.1, and 2.6.1.2
     * Snort 2.7.0 beta 1
     * Sourcefire Intrusion Sensors version 4.1.x, 4.5.x, and 4.6x with
       SEUs prior to SEU 64
     * Sourcefire Intrusion Sensors for Crossbeam version 4.1.x, 4.5.x,
       and 4.6x with SEUs prior to SEU 64
    

    Other products that use Snort or Snort components may be affected.

    I. The DCE/RPC preprocessor reassembles fragmented SMB and DCE/RPC traffic before passing data to the Snort rules.

    The vulnerable code does not properly reassemble certain types of SMB and DCE/RPC packets. An attacker could exploit this vulnerability by sending a specially crafted TCP packet to a host or network monitored by Snort. The DCE/RPC preprocessor is enabled by default, and it is not necessary for an attacker to complete a TCP handshake.

    US-CERT is tracking this vulnerability as VU#196240. This vulnerability has been assigned CVE number CVE-2006-5276. Further information is available in advisories from Sourcefire and ISS.

    II.

    III. Solution

    Upgrade

    Snort 2.6.1.3 is available from the Snort download site. Sourcefire customers should visit the Sourcefire Support Login site.

    Disable the DCE/RPC Preprocessor

    To disable the DCE/RPC preprocessor, comment out the line that loads the preprocessor in the Snort configuration file (typically /etc/snort.conf on UNIX and Linux systems):

     [/etc/snort.conf]
     ... 
     #preprocessor dcerpc...
    

    Restart Snort for the change to take effect.

    Disabling the preprocessor will prevent Snort from reassembling fragmented SMB and DCE/RPC packets. This may allow attacks to evade the IDS.

    IV. References

     * US-CERT Vulnerability Note VU#196240 -
       <http://www.kb.cert.org/vuls/id/196240>
    
     * Sourcefire Advisory 2007-02-19 -
       <http://www.snort.org/docs/advisory-2007-02-19.html>
    
     * Sourcefire Support Login - <https://support.sourcefire.com/>
    
     * Sourcefire Snort Release Notes for 2.6.1.3 -
       <http://www.snort.org/docs/release_notes/release_notes_2613.txt>
    
     * Snort downloads - <http://www.snort.org/dl/>
    
     * DCE/RPC Preprocessor -
       <http://www.snort.org/docs/snort_htmanuals/htmanual_261/node104.html>
    
     * IBM Internet Security Systems Protection Advisory -
       <http://iss.net/threats/257.html>
    
     * CVE-2006-5276 -
       <http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-5276>
    

    The most recent version of this document can be found at:

     <http://www.us-cert.gov/cas/techalerts/TA07-050A.html>
    

    Feedback can be directed to US-CERT Technical Staff. Please send email to cert@cert.org with "TA07-050A Feedback VU#196240" in the subject.


    For instructions on subscribing to or unsubscribing from this mailing list, visit http://www.us-cert.gov/cas/signup.html.


    Produced 2007 by US-CERT, a government organization.

    Terms of use:

     <http://www.us-cert.gov/legal.html>
    

    Revision History

    February 19, 2007: Initial Release

    -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux)

    iQEVAwUBRdop4+xOF3G+ig+rAQKdtAgAhQY66LRfVlNkH30Q5RI0gIo5Vhu14yDP qulLEyzjDhC7gDHWBGQYdE9eCy9Yf3P4BfKJS0766he/7CFn+BaDs7ohnXaynHQq +kMYNBMBg2RbrGKfOGRLHc0P6X1tSP3w45IppjOv9Yo5SUVDCa7beZWURCIKZyp6 OuYXtnpiGNctHgeU56US0sfuKj8qP7KOd9pCDRDQRhJ3UUd9wDpXee66HBxchh+w RSIQiMxisOX9mMYBW3z4DM/lb7PxXoa2Q7DwjM1NIOe/0tAObCOvF4uYhOLCVyNg +EbcN9123V0PW95FITlHXvJU6K8srnnK+Fhpfyi4vg5bYeEF2WiUrg== =T7v8 -----END PGP SIGNATURE----- . February 19, 2007

    Summary:

    Sourcefire has learned of a remotely exploitable vulnerability in the Snort DCE/RPC preprocessor. Sourcefire has prepared updates for Snort open-source software to address this issue.

    Mitigating Factors:

    Users who have disabled the DCE/RPC preprocessor are not vulnerable.

    Recommended Actions:

    • Open-source Snort 2.6.1.x users are advised to upgrade to Snort 2.6.1.3 (or later) immediately.
    • Open-source Snort 2.7 beta users are advised to mitigate this issue by disabling the DCE/RPC preprocessor. This issue will be resolved in Snort 2.7 beta 2.

    Workarounds:

    Snort users who cannot upgrade immediately are advised to disable the DCE/RPC preprocessor by removing the DCE/RPC preprocessor directives from snort.conf and restarting Snort. However, be advised that disabling the DCE/RPC preprocessor reduces detection capabilities for attacks in DCE/RPC traffic. After upgrading, customers should reenable the DCE/RPC preprocessor.

    Detecting Attacks Against This Vulnerability:

    Sourcefire will be releasing a rule pack that provides detection for attacks against this vulnerability.

    Has Sourcefire received any reports that this vulnerability has been exploited? - No. Sourcefire has not received any reports that this vulnerability has been exploited.

    Acknowledgments:

    Sourcefire would like to thank Neel Mehta from IBM X-Force for reporting this issue and working with us to resolve it.


    Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV


    Snort-announce mailing list Snort-announce@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/snort-announce .

    Resolution

    All Snort users should upgrade to the latest version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=net-analyzer/snort-2.6.1.3"
    

    References

    [ 1 ] CVE-2006-5276 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5276

    Availability

    This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

    http://security.gentoo.org/glsa/glsa-200703-01.xml

    Concerns?

    Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org.

    License

    Copyright 2007 Gentoo Foundation, Inc; referenced text belongs to its owner(s).

    The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

    http://creativecommons.org/licenses/by-sa/2.5

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-200702-0378",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "snort",
            "scope": "eq",
            "trust": 2.4,
            "vendor": "snort",
            "version": "2.6.1.1"
          },
          {
            "model": "snort",
            "scope": "eq",
            "trust": 2.4,
            "vendor": "snort",
            "version": "2.6.1"
          },
          {
            "model": "snort",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "snort",
            "version": "2.7_beta1"
          },
          {
            "model": "snort",
            "scope": "eq",
            "trust": 1.4,
            "vendor": "snort",
            "version": "2.6.1.2"
          },
          {
            "model": "intrusion sensor",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sourcefire",
            "version": "4.5"
          },
          {
            "model": "intrusion sensor",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sourcefire",
            "version": "4.1"
          },
          {
            "model": "intrusion sensor",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sourcefire",
            "version": "4.6"
          },
          {
            "model": "snort",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "snort",
            "version": "2.6.1.2"
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "gentoo linux",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "snort",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sourcefire",
            "version": null
          },
          {
            "model": "intrusion sensor",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sourcefire",
            "version": "4.5.x"
          },
          {
            "model": "snort",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "snort",
            "version": "2.7.0 beta 1"
          },
          {
            "model": "intrusion sensor",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sourcefire",
            "version": "for crossbeam version 4.1.x"
          },
          {
            "model": "intrusion sensor",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "sourcefire",
            "version": "4.6x of  seu 64 earlier versions"
          },
          {
            "model": "intrusion sensor",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sourcefire",
            "version": "version 4.1.x"
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "2.6.1.2"
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "2.6.1.1"
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "2.6.1"
          },
          {
            "model": "project snort beta",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "2.7.01"
          },
          {
            "model": "opensuse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "10.1"
          },
          {
            "model": "fedora core7",
            "scope": null,
            "trust": 0.3,
            "vendor": "redhat",
            "version": null
          },
          {
            "model": "enterprise linux as",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "4"
          },
          {
            "model": "networks threat protection system intrusion sensor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "4.1"
          },
          {
            "model": "networks threat protection system intrusion sensor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "4.6"
          },
          {
            "model": "networks threat protection system intrusion sensor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "4.5"
          },
          {
            "model": "networks threat protection system defense center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "4.1"
          },
          {
            "model": "networks threat protection system defense center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "4.6"
          },
          {
            "model": "networks threat protection system defense center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "4.5"
          },
          {
            "model": "net-analyzer/snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "gentoo",
            "version": "2.6.1"
          },
          {
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "model": "linux s/390",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "model": "linux mipsel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "model": "linux mips",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "model": "linux m68k",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "model": "linux ia-64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "model": "linux ia-32",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "model": "linux hppa",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "model": "linux alpha",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "model": "project snort",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "snort",
            "version": "2.6.1.3"
          },
          {
            "model": "net-analyzer/snort",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "gentoo",
            "version": "2.6.1.3"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#196240"
          },
          {
            "db": "BID",
            "id": "22616"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2007-000170"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200702-347"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-5276"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:snort:snort:2.6.1:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:snort:snort:2.6.1.1:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:sourcefire:intrusion_sensor:4.6:*:crossbeam:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "2.6.1.2",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:sourcefire:intrusion_sensor:4.5:*:crossbeam:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:sourcefire:intrusion_sensor:4.6:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:snort:snort:2.7_beta1:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:sourcefire:intrusion_sensor:4.1:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:sourcefire:intrusion_sensor:4.1:*:crossbeam:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:sourcefire:intrusion_sensor:4.5:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-5276"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Neel Mehta",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200702-347"
          }
        ],
        "trust": 0.6
      },
      "cve": "CVE-2006-5276",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "COMPLETE",
                "baseScore": 10.0,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 10.0,
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "obtainAllPrivilege": true,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "HIGH",
                "trust": 1.0,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "Low",
                "accessVector": "Network",
                "authentication": "None",
                "author": "NVD",
                "availabilityImpact": "Complete",
                "baseScore": 10.0,
                "confidentialityImpact": "Complete",
                "exploitabilityScore": null,
                "id": "CVE-2006-5276",
                "impactScore": null,
                "integrityImpact": "Complete",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "High",
                "trust": 0.9,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "COMPLETE",
                "baseScore": 10.0,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 10.0,
                "id": "VHN-21384",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:C/I:C/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2006-5276",
                "trust": 1.8,
                "value": "HIGH"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#196240",
                "trust": 0.8,
                "value": "23.63"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200702-347",
                "trust": 0.6,
                "value": "CRITICAL"
              },
              {
                "author": "VULHUB",
                "id": "VHN-21384",
                "trust": 0.1,
                "value": "HIGH"
              },
              {
                "author": "VULMON",
                "id": "CVE-2006-5276",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#196240"
          },
          {
            "db": "VULHUB",
            "id": "VHN-21384"
          },
          {
            "db": "VULMON",
            "id": "CVE-2006-5276"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2007-000170"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200702-347"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-5276"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic. Snort IDS and Sourcefire Intrusion Sensor are prone to a stack-based buffer-overflow vulnerability because the network intrusion detection (NID) systems fail to handle specially crafted \u0027DCE\u0027 and \u0027RPC\u0027 network packets. \nAn attacker can exploit this issue to execute malicious code in the context of the user running the affected application. Failed attempts will likely cause these applications to crash. The software provides functions such as packet sniffing, packet analysis, and packet inspection. \n-----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n\n                     National Cyber Alert System\n\n               Technical Cyber Security Alert TA07-050A\n\n\nSourcefire Snort DCE/RPC Preprocessor Buffer Overflow\n\n   Original release date: February 19, 2007\n   Last revised: --\n   Source: US-CERT\n\n\nSystems Affected\n\n     * Snort 2.6.1, 2.6.1.1, and 2.6.1.2\n     * Snort 2.7.0 beta 1\n     * Sourcefire Intrusion Sensors version 4.1.x, 4.5.x, and 4.6x with\n       SEUs prior to SEU 64\n     * Sourcefire Intrusion Sensors for Crossbeam version 4.1.x, 4.5.x,\n       and 4.6x with SEUs prior to SEU 64\n\n   Other products that use Snort or Snort components may be affected. \n\n\nI. The DCE/RPC\n   preprocessor reassembles fragmented SMB and DCE/RPC traffic before\n   passing data to the Snort rules. \n\n   The vulnerable code does not properly reassemble certain types of\n   SMB and DCE/RPC packets. An attacker could exploit this\n   vulnerability by sending a specially crafted TCP packet to a host\n   or network monitored by Snort. The DCE/RPC preprocessor is enabled\n   by default, and it is not necessary for an attacker to complete a\n   TCP handshake. \n\n   US-CERT is tracking this vulnerability as VU#196240. This\n   vulnerability has been assigned CVE number CVE-2006-5276. Further\n   information is available in advisories from Sourcefire and ISS. \n\n\nII. \n\n\nIII. Solution\n\nUpgrade\n\n   Snort 2.6.1.3 is available from the Snort download site. Sourcefire\n   customers should visit the Sourcefire Support Login site. \n\nDisable the DCE/RPC Preprocessor\n\n   To disable the DCE/RPC preprocessor, comment out the line that loads\n   the preprocessor in the Snort configuration file (typically\n   /etc/snort.conf on UNIX and Linux systems):\n\n     [/etc/snort.conf]\n     ... \n     #preprocessor dcerpc... \n   \n   Restart Snort for the change to take effect. \n\n   Disabling the preprocessor will prevent Snort from reassembling\n   fragmented SMB and DCE/RPC packets. This may allow attacks to evade\n   the IDS. \n\n\nIV. References\n\n     * US-CERT Vulnerability Note VU#196240 -\n       \u003chttp://www.kb.cert.org/vuls/id/196240\u003e\n\n     * Sourcefire Advisory 2007-02-19 -\n       \u003chttp://www.snort.org/docs/advisory-2007-02-19.html\u003e\n\n     * Sourcefire Support Login - \u003chttps://support.sourcefire.com/\u003e\n\n     * Sourcefire Snort Release Notes for 2.6.1.3 -\n       \u003chttp://www.snort.org/docs/release_notes/release_notes_2613.txt\u003e\n\n     * Snort downloads - \u003chttp://www.snort.org/dl/\u003e\n\n     * DCE/RPC Preprocessor -\n       \u003chttp://www.snort.org/docs/snort_htmanuals/htmanual_261/node104.html\u003e\n\n     * IBM Internet Security Systems Protection Advisory -\n       \u003chttp://iss.net/threats/257.html\u003e\n\n     * CVE-2006-5276 -\n       \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-5276\u003e\n\n\n ____________________________________________________________________\n\n   The most recent version of this document can be found at:\n\n     \u003chttp://www.us-cert.gov/cas/techalerts/TA07-050A.html\u003e\n ____________________________________________________________________\n\n   Feedback can be directed to US-CERT Technical Staff. Please send\n   email to \u003ccert@cert.org\u003e with \"TA07-050A Feedback VU#196240\" in the\n   subject. \n ____________________________________________________________________\n\n   For instructions on subscribing to or unsubscribing from this\n   mailing list, visit \u003chttp://www.us-cert.gov/cas/signup.html\u003e. \n ____________________________________________________________________\n\n   Produced 2007 by US-CERT, a government organization. \n\n   Terms of use:\n\n     \u003chttp://www.us-cert.gov/legal.html\u003e\n ____________________________________________________________________\n\n\nRevision History\n\n   February 19, 2007:  Initial Release\n\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.2.1 (GNU/Linux)\n\niQEVAwUBRdop4+xOF3G+ig+rAQKdtAgAhQY66LRfVlNkH30Q5RI0gIo5Vhu14yDP\nqulLEyzjDhC7gDHWBGQYdE9eCy9Yf3P4BfKJS0766he/7CFn+BaDs7ohnXaynHQq\n+kMYNBMBg2RbrGKfOGRLHc0P6X1tSP3w45IppjOv9Yo5SUVDCa7beZWURCIKZyp6\nOuYXtnpiGNctHgeU56US0sfuKj8qP7KOd9pCDRDQRhJ3UUd9wDpXee66HBxchh+w\nRSIQiMxisOX9mMYBW3z4DM/lb7PxXoa2Q7DwjM1NIOe/0tAObCOvF4uYhOLCVyNg\n+EbcN9123V0PW95FITlHXvJU6K8srnnK+Fhpfyi4vg5bYeEF2WiUrg==\n=T7v8\n-----END PGP SIGNATURE-----\n. February 19, 2007\n\nSummary:\n\nSourcefire has learned of a remotely exploitable vulnerability in the \nSnort DCE/RPC preprocessor. Sourcefire \nhas prepared updates for Snort open-source software to address this issue. \n\n\nMitigating Factors:\n\nUsers who have disabled the DCE/RPC preprocessor are not vulnerable. \n\n\nRecommended Actions:\n\n* Open-source Snort 2.6.1.x users are advised to upgrade to Snort \n2.6.1.3 (or later) immediately. \n* Open-source Snort 2.7 beta users are advised to mitigate this issue by \ndisabling the DCE/RPC preprocessor. \n   This issue will be resolved in Snort 2.7 beta 2. \n\n\nWorkarounds:\n\nSnort users who cannot upgrade immediately are advised to disable the \nDCE/RPC preprocessor by removing the DCE/RPC preprocessor directives \nfrom snort.conf and restarting Snort. However, be advised that disabling \nthe DCE/RPC preprocessor reduces detection capabilities for attacks in \nDCE/RPC traffic. After upgrading, customers should reenable the DCE/RPC \npreprocessor. \n\n\nDetecting Attacks Against This Vulnerability:\n\nSourcefire will be releasing a rule pack that provides detection for \nattacks against this vulnerability. \n\nHas Sourcefire received any reports that this vulnerability has been \nexploited?\n- No. Sourcefire has not received any reports that this vulnerability \nhas been exploited. \n\n\nAcknowledgments:\n\nSourcefire would like to thank Neel Mehta from IBM X-Force for reporting \nthis issue and working with us to resolve it. \n\n\n-------------------------------------------------------------------------\nTake Surveys. Earn Cash. Influence the Future of IT\nJoin SourceForge.net\u0027s Techsay panel and you\u0027ll get the chance to share your\nopinions on IT \u0026 business topics through brief surveys-and earn cash\nhttp://www.techsay.com/default.php?page=join.php\u0026p=sourceforge\u0026CID=DEVDEV\n_______________________________________________\nSnort-announce mailing list\nSnort-announce@lists.sourceforge.net\nhttps://lists.sourceforge.net/lists/listinfo/snort-announce\n. \n\nResolution\n==========\n\nAll Snort users should upgrade to the latest version:\n\n    # emerge --sync\n    # emerge --ask --oneshot --verbose \"\u003e=net-analyzer/snort-2.6.1.3\"\n\nReferences\n==========\n\n  [ 1 ] CVE-2006-5276\n        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5276\n\nAvailability\n============\n\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n  http://security.gentoo.org/glsa/glsa-200703-01.xml\n\nConcerns?\n=========\n\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttp://bugs.gentoo.org. \n\nLicense\n=======\n\nCopyright 2007 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttp://creativecommons.org/licenses/by-sa/2.5\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-5276"
          },
          {
            "db": "CERT/CC",
            "id": "VU#196240"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2007-000170"
          },
          {
            "db": "BID",
            "id": "22616"
          },
          {
            "db": "VULHUB",
            "id": "VHN-21384"
          },
          {
            "db": "VULMON",
            "id": "CVE-2006-5276"
          },
          {
            "db": "PACKETSTORM",
            "id": "54569"
          },
          {
            "db": "PACKETSTORM",
            "id": "54522"
          },
          {
            "db": "PACKETSTORM",
            "id": "54834"
          }
        ],
        "trust": 3.06
      },
      "exploit_availability": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "reference": "https://vulmon.com/exploitdetails?qidtp=exploitdb\u0026qid=3609",
            "trust": 0.4,
            "type": "exploit"
          },
          {
            "reference": "https://www.scap.org.cn/vuln/vhn-21384",
            "trust": 0.1,
            "type": "unknown"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-21384"
          },
          {
            "db": "VULMON",
            "id": "CVE-2006-5276"
          }
        ]
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#196240",
            "trust": 3.8
          },
          {
            "db": "NVD",
            "id": "CVE-2006-5276",
            "trust": 3.2
          },
          {
            "db": "BID",
            "id": "22616",
            "trust": 2.9
          },
          {
            "db": "USCERT",
            "id": "TA07-050A",
            "trust": 2.7
          },
          {
            "db": "SECUNIA",
            "id": "24272",
            "trust": 2.6
          },
          {
            "db": "SECUNIA",
            "id": "24190",
            "trust": 2.6
          },
          {
            "db": "SECUNIA",
            "id": "24235",
            "trust": 2.6
          },
          {
            "db": "SECUNIA",
            "id": "24239",
            "trust": 1.8
          },
          {
            "db": "SECUNIA",
            "id": "26746",
            "trust": 1.8
          },
          {
            "db": "SECUNIA",
            "id": "24240",
            "trust": 1.8
          },
          {
            "db": "SECTRACK",
            "id": "1017669",
            "trust": 1.8
          },
          {
            "db": "SECTRACK",
            "id": "1017670",
            "trust": 1.8
          },
          {
            "db": "EXPLOIT-DB",
            "id": "3362",
            "trust": 1.8
          },
          {
            "db": "VUPEN",
            "id": "ADV-2007-0668",
            "trust": 1.8
          },
          {
            "db": "VUPEN",
            "id": "ADV-2007-0656",
            "trust": 1.8
          },
          {
            "db": "OSVDB",
            "id": "32094",
            "trust": 1.8
          },
          {
            "db": "XF",
            "id": "31275",
            "trust": 1.4
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2007-000170",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200702-347",
            "trust": 0.7
          },
          {
            "db": "CERT/CC",
            "id": "TA07-050A",
            "trust": 0.6
          },
          {
            "db": "GENTOO",
            "id": "GLSA-200703-01",
            "trust": 0.6
          },
          {
            "db": "MILW0RM",
            "id": "3362",
            "trust": 0.6
          },
          {
            "db": "ISS",
            "id": "20070219 SOURCEFIRE SNORT REMOTE BUFFER OVERFLOW",
            "trust": 0.6
          },
          {
            "db": "BUGTRAQ",
            "id": "20070303 ERRATA: [ GLSA 200703-01 ] SNORT: REMOTE EXECUTION OF ARBITRARY CODE",
            "trust": 0.6
          },
          {
            "db": "FEDORA",
            "id": "FEDORA-2007-2060",
            "trust": 0.6
          },
          {
            "db": "EXPLOIT-DB",
            "id": "3609",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "54522",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "54569",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "54834",
            "trust": 0.2
          },
          {
            "db": "SEEBUG",
            "id": "SSVID-72771",
            "trust": 0.1
          },
          {
            "db": "EXPLOIT-DB",
            "id": "18723",
            "trust": 0.1
          },
          {
            "db": "EXPLOIT-DB",
            "id": "3391",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "111677",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "54632",
            "trust": 0.1
          },
          {
            "db": "VULHUB",
            "id": "VHN-21384",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2006-5276",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#196240"
          },
          {
            "db": "VULHUB",
            "id": "VHN-21384"
          },
          {
            "db": "VULMON",
            "id": "CVE-2006-5276"
          },
          {
            "db": "BID",
            "id": "22616"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2007-000170"
          },
          {
            "db": "PACKETSTORM",
            "id": "54569"
          },
          {
            "db": "PACKETSTORM",
            "id": "54522"
          },
          {
            "db": "PACKETSTORM",
            "id": "54834"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200702-347"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-5276"
          }
        ]
      },
      "id": "VAR-200702-0378",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-21384"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2024-07-23T22:43:25.614000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Latest changelog : 2.6.1.3",
            "trust": 0.8,
            "url": "http://www.snort.org/dl/"
          },
          {
            "title": "2007-02-19 Sourcefire Advisory: Vulnerability in Snort DCE/RPC Preprocessor",
            "trust": 0.8,
            "url": "http://www.snort.org/docs/advisory-2007-02-19.html"
          },
          {
            "title": "Sourcefire Support Login",
            "trust": 0.8,
            "url": "https://support.sourcefire.com/"
          },
          {
            "title": "Top Page",
            "trust": 0.8,
            "url": "http://www.sourcefire.com/"
          },
          {
            "title": "Detection for Vulnerability in Snort DCE/RPC Pre-processor",
            "trust": 0.8,
            "url": "http://www.sourcefire.com/services/advisories/sa022007.html"
          },
          {
            "title": "vrt-rules-2007-02-20",
            "trust": 0.8,
            "url": "http://www.snort.org/vrt/advisories/vrt-rules-2007-02-20.html"
          },
          {
            "title": "LinuxFlaw",
            "trust": 0.1,
            "url": "https://github.com/mudongliang/linuxflaw "
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2006-5276"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2007-000170"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-5276"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 3.0,
            "url": "http://www.kb.cert.org/vuls/id/196240"
          },
          {
            "trust": 2.9,
            "url": "http://www.snort.org/docs/advisory-2007-02-19.html"
          },
          {
            "trust": 2.6,
            "url": "http://iss.net/threats/257.html"
          },
          {
            "trust": 2.6,
            "url": "http://www.securityfocus.com/bid/22616"
          },
          {
            "trust": 2.6,
            "url": "http://www.us-cert.gov/cas/techalerts/ta07-050a.html"
          },
          {
            "trust": 1.9,
            "url": "http://security.gentoo.org/glsa/glsa-200703-01.xml"
          },
          {
            "trust": 1.8,
            "url": "http://www116.nortelnetworks.com/pub/repository/clarify/document/2007/08/021923-01.pdf"
          },
          {
            "trust": 1.8,
            "url": "http://fedoranews.org/updates/fedora-2007-206.shtml"
          },
          {
            "trust": 1.8,
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=229265"
          },
          {
            "trust": 1.8,
            "url": "http://www.osvdb.org/32094"
          },
          {
            "trust": 1.8,
            "url": "http://www.securitytracker.com/id?1017669"
          },
          {
            "trust": 1.8,
            "url": "http://www.securitytracker.com/id?1017670"
          },
          {
            "trust": 1.8,
            "url": "http://secunia.com/advisories/24190"
          },
          {
            "trust": 1.8,
            "url": "http://secunia.com/advisories/24235"
          },
          {
            "trust": 1.8,
            "url": "http://secunia.com/advisories/24239"
          },
          {
            "trust": 1.8,
            "url": "http://secunia.com/advisories/24240"
          },
          {
            "trust": 1.8,
            "url": "http://secunia.com/advisories/24272"
          },
          {
            "trust": 1.8,
            "url": "http://secunia.com/advisories/26746"
          },
          {
            "trust": 1.7,
            "url": "http://www130.nortelnetworks.com/go/main.jsp?cscat=bltndetail\u0026documentoid=540173"
          },
          {
            "trust": 1.4,
            "url": "http://xforce.iss.net/xforce/xfdb/31275"
          },
          {
            "trust": 1.2,
            "url": "http://www.securityfocus.com/archive/1/461810/100/0/threaded"
          },
          {
            "trust": 1.2,
            "url": "https://www.exploit-db.com/exploits/3362"
          },
          {
            "trust": 1.2,
            "url": "http://www.vupen.com/english/advisories/2007/0656"
          },
          {
            "trust": 1.2,
            "url": "http://www.vupen.com/english/advisories/2007/0668"
          },
          {
            "trust": 1.2,
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31275"
          },
          {
            "trust": 0.9,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-5276"
          },
          {
            "trust": 0.8,
            "url": "https://support.sourcefire.com/"
          },
          {
            "trust": 0.8,
            "url": "http://www.snort.org/docs/snort_htmanuals/htmanual_261/node104.html"
          },
          {
            "trust": 0.8,
            "url": "http://www.snort.org/docs/release_notes/release_notes_2613.txt"
          },
          {
            "trust": 0.8,
            "url": "http://www.snort.org/dl/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/24235/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/24190/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/24272/"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnta07-050a/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/tr/trta07-050a/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2006-5276"
          },
          {
            "trust": 0.6,
            "url": "http://www.securityfocus.com/archive/1/archive/1/461810/100/0/threaded"
          },
          {
            "trust": 0.6,
            "url": "http://www.milw0rm.com/exploits/3362"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2007/0668"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2007/0656"
          },
          {
            "trust": 0.3,
            "url": "https://www.it-isac.org/postings/cyber/alertdetail.php?id=4108\u0026menutype=menupublic"
          },
          {
            "trust": 0.3,
            "url": "http://www.snort.org/"
          },
          {
            "trust": 0.3,
            "url": "http://www130.nortelnetworks.com/go/main.jsp?cscat=bltndetail\u0026documentoid=540173\u0026renditionid=\u0026poid=null"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2006-5276"
          },
          {
            "trust": 0.1,
            "url": "http://www130.nortelnetworks.com/go/main.jsp?cscat=bltndetail\u0026amp;documentoid=540173"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/.html"
          },
          {
            "trust": 0.1,
            "url": "https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2006-5276"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://www.rapid7.com/db/modules/exploit/multi/ids/snort_dce_rpc"
          },
          {
            "trust": 0.1,
            "url": "https://www.exploit-db.com/exploits/3609/"
          },
          {
            "trust": 0.1,
            "url": "http://www.snort.org/docs/snort_htmanuals/htmanual_261/node104.html\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.us-cert.gov/cas/techalerts/ta07-050a.html\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://iss.net/threats/257.html\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.us-cert.gov/cas/signup.html\u003e."
          },
          {
            "trust": 0.1,
            "url": "https://support.sourcefire.com/\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.kb.cert.org/vuls/id/196240\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.snort.org/dl/\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-5276\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.us-cert.gov/legal.html\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.snort.org/docs/advisory-2007-02-19.html\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.snort.org/docs/release_notes/release_notes_2613.txt\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.techsay.com/default.php?page=join.php\u0026p=sourceforge\u0026cid=devdev"
          },
          {
            "trust": 0.1,
            "url": "https://lists.sourceforge.net/lists/listinfo/snort-announce"
          },
          {
            "trust": 0.1,
            "url": "http://bugs.gentoo.org."
          },
          {
            "trust": 0.1,
            "url": "http://creativecommons.org/licenses/by-sa/2.5"
          },
          {
            "trust": 0.1,
            "url": "http://security.gentoo.org/"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#196240"
          },
          {
            "db": "VULHUB",
            "id": "VHN-21384"
          },
          {
            "db": "VULMON",
            "id": "CVE-2006-5276"
          },
          {
            "db": "BID",
            "id": "22616"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2007-000170"
          },
          {
            "db": "PACKETSTORM",
            "id": "54569"
          },
          {
            "db": "PACKETSTORM",
            "id": "54522"
          },
          {
            "db": "PACKETSTORM",
            "id": "54834"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200702-347"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-5276"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#196240"
          },
          {
            "db": "VULHUB",
            "id": "VHN-21384"
          },
          {
            "db": "VULMON",
            "id": "CVE-2006-5276"
          },
          {
            "db": "BID",
            "id": "22616"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2007-000170"
          },
          {
            "db": "PACKETSTORM",
            "id": "54569"
          },
          {
            "db": "PACKETSTORM",
            "id": "54522"
          },
          {
            "db": "PACKETSTORM",
            "id": "54834"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200702-347"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-5276"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2007-02-19T00:00:00",
            "db": "CERT/CC",
            "id": "VU#196240"
          },
          {
            "date": "2007-02-20T00:00:00",
            "db": "VULHUB",
            "id": "VHN-21384"
          },
          {
            "date": "2007-02-20T00:00:00",
            "db": "VULMON",
            "id": "CVE-2006-5276"
          },
          {
            "date": "2007-02-19T00:00:00",
            "db": "BID",
            "id": "22616"
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2007-000170"
          },
          {
            "date": "2007-02-23T03:05:45",
            "db": "PACKETSTORM",
            "id": "54569"
          },
          {
            "date": "2007-02-20T01:23:04",
            "db": "PACKETSTORM",
            "id": "54522"
          },
          {
            "date": "2007-03-06T06:25:25",
            "db": "PACKETSTORM",
            "id": "54834"
          },
          {
            "date": "2007-02-19T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200702-347"
          },
          {
            "date": "2007-02-20T01:28:00",
            "db": "NVD",
            "id": "CVE-2006-5276"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2008-01-30T00:00:00",
            "db": "CERT/CC",
            "id": "VU#196240"
          },
          {
            "date": "2018-10-17T00:00:00",
            "db": "VULHUB",
            "id": "VHN-21384"
          },
          {
            "date": "2018-10-17T00:00:00",
            "db": "VULMON",
            "id": "CVE-2006-5276"
          },
          {
            "date": "2007-11-15T00:38:00",
            "db": "BID",
            "id": "22616"
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2007-000170"
          },
          {
            "date": "2007-05-16T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200702-347"
          },
          {
            "date": "2018-10-17T21:41:57.483000",
            "db": "NVD",
            "id": "CVE-2006-5276"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "54569"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200702-347"
          }
        ],
        "trust": 0.7
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Sourcefire Snort DCE/RPC preprocessor does not properly reassemble fragmented packets",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#196240"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "buffer overflow",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200702-347"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200110-0073

    Vulnerability from variot - Updated: 2023-12-18 12:53

    Various Intrusion Detection Systems (IDS) including (1) Cisco Secure Intrusion Detection System, (2) Cisco Catalyst 6000 Intrusion Detection System Module, (3) Dragon Sensor 4.x, (4) Snort before 1.8.1, (5) ISS RealSecure Network Sensor 5.x and 6.x before XPU 3.2, and (6) ISS RealSecure Server Sensor 5.5 and 6.0 for Windows, allow remote attackers to evade detection of HTTP attacks via non-standard "%u" Unicode encoding of ASCII characters in the requested URL. Multiple intrusion detection systems may be circumvented via %u encoding allowing intruders to launch attacks undetected. The Microsoft IIS web server supports a non-standard method of encoding web requests. If there is no webserver support for this encoding method or if it is disabled, there will be no targets to which encoded attacks can be sent. NOTE: Only RealSecure, Dragon and Snort are confirmed vulnerable. It is highly likely that IDS systems from other vendors are vulnerable as well, however we have not recieved confirmation. This record will be updated as more information becomes available regarding affected technologies. BlackICE products detect '%u' encoded requests as being invalid, but do not decode them and detect encoded attack signatures

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-200110-0073",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "realsecure network sensor",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "iss",
            "version": "5.x"
          },
          {
            "model": "dragon",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "enterasys",
            "version": "4.x"
          },
          {
            "model": "realsecure server sensor",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "iss",
            "version": "5.5"
          },
          {
            "model": "realsecure server sensor",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "iss",
            "version": "6.0"
          },
          {
            "model": "snort",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "snort",
            "version": "1.8.1"
          },
          {
            "model": "realsecure network sensor",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "iss",
            "version": "6.x"
          },
          {
            "model": "secure intrusion detection system",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "*"
          },
          {
            "model": "catalyst 6000 intrusion detection system module",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "*"
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "enterasys",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "internet security",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "the snort",
            "version": null
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "1.8"
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "1.7"
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "1.6.3"
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "1.6.2"
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "1.6.1"
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "1.6"
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "1.5.2"
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "1.5.1"
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "1.5"
          },
          {
            "model": "network intrusion detection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nfr",
            "version": "5.0"
          },
          {
            "model": "security systems realsecure server sensor win",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "internet",
            "version": "6.0"
          },
          {
            "model": "security systems realsecure server sensor win",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "internet",
            "version": "5.5.2"
          },
          {
            "model": "security systems realsecure server sensor win",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "internet",
            "version": "5.5.1"
          },
          {
            "model": "security systems realsecure server sensor win",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "internet",
            "version": "5.5"
          },
          {
            "model": "security systems realsecure server sensor win",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "internet",
            "version": "5.0"
          },
          {
            "model": "security systems realsecure network sensor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "internet",
            "version": "6.0"
          },
          {
            "model": "security systems realsecure network sensor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "internet",
            "version": "5.5.2"
          },
          {
            "model": "security systems realsecure network sensor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "internet",
            "version": "5.5.1"
          },
          {
            "model": "security systems realsecure network sensor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "internet",
            "version": "5.5"
          },
          {
            "model": "security systems realsecure network sensor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "internet",
            "version": "5.0"
          },
          {
            "model": "dragon ids",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "enterasys",
            "version": "4.0"
          },
          {
            "model": "secure ids network sensor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "3.0"
          },
          {
            "model": "secure ids host sensor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "2.0"
          },
          {
            "model": "catalyst ids module",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6000"
          },
          {
            "model": "project snort",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "snort",
            "version": "1.8.1"
          },
          {
            "model": "security systems realsecure server sensor win",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "internet",
            "version": "6.0.1"
          },
          {
            "model": "dragon ids",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "enterasys",
            "version": "5.0"
          },
          {
            "model": "associates etrust intrusion detection",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "computer",
            "version": "1.5"
          },
          {
            "model": "associates etrust intrusion detection",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "computer",
            "version": "1.4.5"
          },
          {
            "model": "secure ids network sensor s6",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "3.0"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#548515"
          },
          {
            "db": "BID",
            "id": "3292"
          },
          {
            "db": "NVD",
            "id": "CVE-2001-0669"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200110-136"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:secure_intrusion_detection_system:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:iss:realsecure_network_sensor:5.x:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:iss:realsecure_network_sensor:6.x:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:iss:realsecure_server_sensor:5.5:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:iss:realsecure_server_sensor:6.0:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:snort:snort:1.8.1:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:catalyst_6000_intrusion_detection_system_module:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:enterasys:dragon:4.x:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2001-0669"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Credited to \u0027hsj\u0027 as being used in proof of concept code for an unrelated vulnerability.\n\nFurther research conducted by eEye Digital Security.",
        "sources": [
          {
            "db": "BID",
            "id": "3292"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200110-136"
          }
        ],
        "trust": 0.9
      },
      "cve": "CVE-2001-0669",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 7.5,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "HIGH",
                "trust": 1.0,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 7.5,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "VHN-3478",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2001-0669",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#548515",
                "trust": 0.8,
                "value": "13.13"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200110-136",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-3478",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#548515"
          },
          {
            "db": "VULHUB",
            "id": "VHN-3478"
          },
          {
            "db": "NVD",
            "id": "CVE-2001-0669"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200110-136"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Various Intrusion Detection Systems (IDS) including (1) Cisco Secure Intrusion Detection System, (2) Cisco Catalyst 6000 Intrusion Detection System Module, (3) Dragon Sensor 4.x, (4) Snort before 1.8.1, (5) ISS RealSecure Network Sensor 5.x and 6.x before XPU 3.2, and (6) ISS RealSecure Server Sensor 5.5 and 6.0 for Windows, allow remote attackers to evade detection of HTTP attacks via non-standard \"%u\" Unicode encoding of ASCII characters in the requested URL. Multiple intrusion detection systems may be circumvented via %u encoding allowing intruders to launch attacks undetected. The Microsoft IIS web server supports a non-standard method of encoding web requests.  If there is no webserver support for this encoding method or if it is disabled, there will be no targets to which encoded attacks can be sent. \n**NOTE**: Only RealSecure, Dragon and Snort are confirmed vulnerable.  It is highly likely that IDS systems from other vendors are vulnerable as well, however we have not recieved confirmation.  This record will be updated as more information becomes available regarding affected technologies. \nBlackICE products detect \u0027%u\u0027 encoded requests as being invalid, but do not decode them and detect encoded attack signatures",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2001-0669"
          },
          {
            "db": "CERT/CC",
            "id": "VU#548515"
          },
          {
            "db": "BID",
            "id": "3292"
          },
          {
            "db": "VULHUB",
            "id": "VHN-3478"
          }
        ],
        "trust": 1.98
      },
      "exploit_availability": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "reference": "https://www.scap.org.cn/vuln/vhn-3478",
            "trust": 0.1,
            "type": "unknown"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-3478"
          }
        ]
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "BID",
            "id": "3292",
            "trust": 2.8
          },
          {
            "db": "CERT/CC",
            "id": "VU#548515",
            "trust": 2.5
          },
          {
            "db": "NVD",
            "id": "CVE-2001-0669",
            "trust": 1.7
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200110-136",
            "trust": 0.7
          },
          {
            "db": "CISCO",
            "id": "20010905 CISCO SECURE INTRUSION DETECTION SYSTEM SIGNATURE OBFUSCATION VULNERABILITY",
            "trust": 0.6
          },
          {
            "db": "ISS",
            "id": "20010905 MULTIPLE VENDOR IDS UNICODE BYPASS VULNERABILITY",
            "trust": 0.6
          },
          {
            "db": "BUGTRAQ",
            "id": "20010905 %U ENCODING IDS BYPASS VULNERABILITY",
            "trust": 0.6
          },
          {
            "db": "SEEBUG",
            "id": "SSVID-74940",
            "trust": 0.1
          },
          {
            "db": "EXPLOIT-DB",
            "id": "21100",
            "trust": 0.1
          },
          {
            "db": "VULHUB",
            "id": "VHN-3478",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#548515"
          },
          {
            "db": "VULHUB",
            "id": "VHN-3478"
          },
          {
            "db": "BID",
            "id": "3292"
          },
          {
            "db": "NVD",
            "id": "CVE-2001-0669"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200110-136"
          }
        ]
      },
      "id": "VAR-200110-0073",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-3478"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2023-12-18T12:53:57.096000Z",
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2001-0669"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.8,
            "url": "http://www.cisco.com/warp/public/707/cisco-intrusion-detection-obfuscation-vuln-pub.shtml"
          },
          {
            "trust": 2.5,
            "url": "http://www.securityfocus.com/bid/3292"
          },
          {
            "trust": 1.7,
            "url": "http://www.kb.cert.org/vuls/id/548515"
          },
          {
            "trust": 1.7,
            "url": "http://xforce.iss.net/alerts/advise95.php"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=99972950200602\u0026w=2"
          },
          {
            "trust": 0.8,
            "url": "http://www.eeye.com/html/research/advisories/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://www.iss.net/db_data/xpu/rs.php"
          },
          {
            "trust": 0.8,
            "url": "http://www.iss.net/eval/eval.php"
          },
          {
            "trust": 0.6,
            "url": "http://marc.theaimsgroup.com/?l=bugtraq\u0026m=99972950200602\u0026w=2"
          },
          {
            "trust": 0.3,
            "url": "http://www.enterasys.com/ids/"
          },
          {
            "trust": 0.3,
            "url": "http://www.eeye.com"
          },
          {
            "trust": 0.3,
            "url": "http://www.iss.net/securing_e-business/security_products/intrusion_detection/"
          },
          {
            "trust": 0.3,
            "url": "http://www.nfr.com/products/nid/"
          },
          {
            "trust": 0.3,
            "url": "http://www.cisco.com/warp/public/cc/pd/sqsw/sqidsz/index.shtml"
          },
          {
            "trust": 0.3,
            "url": "http://www.snort.org"
          },
          {
            "trust": 0.3,
            "url": "http://www.iss.net/xforce"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=99972950200602\u0026amp;w=2"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#548515"
          },
          {
            "db": "VULHUB",
            "id": "VHN-3478"
          },
          {
            "db": "BID",
            "id": "3292"
          },
          {
            "db": "NVD",
            "id": "CVE-2001-0669"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200110-136"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#548515"
          },
          {
            "db": "VULHUB",
            "id": "VHN-3478"
          },
          {
            "db": "BID",
            "id": "3292"
          },
          {
            "db": "NVD",
            "id": "CVE-2001-0669"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200110-136"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2001-09-07T00:00:00",
            "db": "CERT/CC",
            "id": "VU#548515"
          },
          {
            "date": "2001-10-30T00:00:00",
            "db": "VULHUB",
            "id": "VHN-3478"
          },
          {
            "date": "2001-09-05T00:00:00",
            "db": "BID",
            "id": "3292"
          },
          {
            "date": "2001-10-30T05:00:00",
            "db": "NVD",
            "id": "CVE-2001-0669"
          },
          {
            "date": "2001-10-30T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200110-136"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2003-10-30T00:00:00",
            "db": "CERT/CC",
            "id": "VU#548515"
          },
          {
            "date": "2016-10-18T00:00:00",
            "db": "VULHUB",
            "id": "VHN-3478"
          },
          {
            "date": "2001-09-05T00:00:00",
            "db": "BID",
            "id": "3292"
          },
          {
            "date": "2016-10-18T02:11:41.187000",
            "db": "NVD",
            "id": "CVE-2001-0669"
          },
          {
            "date": "2006-08-22T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200110-136"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200110-136"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple intrusion detection systems may be circumvented via %u encoding",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#548515"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "wrong environmental conditions",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200110-136"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202110-1353

    Vulnerability from variot - Updated: 2023-12-18 11:44

    Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload. plural Cisco products and Snort Contains a vulnerability regarding the lack of free memory after expiration.Service operation interruption (DoS) It may be in a state.

    For the stable distribution (bullseye), these problems have been fixed in version 2.9.20-0+deb11u1.

    We recommend that you upgrade your snort packages.

    For the detailed security status of snort please refer to its security tracker page at: https://security-tracker.debian.org/tracker/snort

    Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE-----

    iQKTBAEBCgB9FiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAmPw/Y5fFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQACgkQ2a0UuVE7 UeQRrA/9EQ9kF1LT2fYUGFMyKeCQQFTB8tfIsyz2VUrGUtWlVDKsDVqfEMWa6Zwx rAaFnAPOBi1KNX1laencuphuiDIxLmvA0ShpHKo/R3vY4WXmNwJMjPWNr82oTw8j CEggyfj9i5V1EwZZi0B3L4WP1pCQcJRN6XVB3FJWZScyQFtRH0xO7l9acIV68lTs 9hGDDe2wn5ufHh0sXskZitgYoXfdHjjl3CzFxrmGGDq9KFr8rDIEUnZrm58DCRNL RkDmvxrEEsXGmzQlhT/2ea88aIXgNM4xnDztr3iV1v8JOMb6BwehrH43NgdDb5V8 6xBcHuXOLNI75mca1TQxwUd8PSNo3YK60IbDC2ztcUIIvl1xk8bDFyABb3gKvGoR izKFYej4hNeZb+0HWHsnO9vvP4t6LkKF/iIGNNVNmA9ZJA94ESCfItSozIITqRE2 sJQ43X9uQhX2p/dfeyNoOJDhie0RyZyg0rPxIDNonP1YJ8kTjMMHnRNqGn9MkVYK bNr1/sdLhH0TXvs5XoL9b9YjUPL67hDHL9bHLByOKNSxXrth+TcqFX+eg7Bztn1A vS4Sc2TWCuBa3jdrS9WJiy58aB1sTABRhN+tY4wVs+A9vIr1dKHn4wsB8axmpYDW cyzVbz9Q+fC+gXwDusZccBqfD7rByEFWXflBFI4PDXRrW+NPy8w\xdb5k -----END PGP SIGNATURE-----

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202110-1353",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "firepower threat defense",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.6.3"
          },
          {
            "model": "firepower management center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.9.16"
          },
          {
            "model": "firepower threat defense",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.4.0.12"
          },
          {
            "model": "unified threat defense",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "17.3"
          },
          {
            "model": "firepower management center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.9.15"
          },
          {
            "model": "unified threat defense",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "17.3.4a"
          },
          {
            "model": "unified threat defense",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "17.4.2"
          },
          {
            "model": "firepower threat defense",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.5.0"
          },
          {
            "model": "firepower management center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.9.17"
          },
          {
            "model": "firepower threat defense",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.7.0"
          },
          {
            "model": "snort",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "snort",
            "version": "2.9.18"
          },
          {
            "model": "snort",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "snort",
            "version": "2.0.0"
          },
          {
            "model": "firepower management center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.9.14.0"
          },
          {
            "model": "unified threat defense",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "16.12"
          },
          {
            "model": "firepower threat defense",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.7.0.2"
          },
          {
            "model": "unified threat defense",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "17.4"
          },
          {
            "model": "unified threat defense",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "16.12.6"
          },
          {
            "model": "cisco firepower threat defense \u30bd\u30d5\u30c8\u30a6\u30a7\u30a2",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          },
          {
            "model": "cisco firepower management center",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          },
          {
            "model": "snort",
            "scope": null,
            "trust": 0.8,
            "vendor": "snort",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-014296"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-40114"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.14.0:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.15:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.16:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.17:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "6.7.0.2",
                    "versionStartIncluding": "6.7.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "6.4.0.12",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "6.6.3",
                    "versionStartIncluding": "6.5.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "17.4.2",
                    "versionStartIncluding": "17.4",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "17.3.4a",
                    "versionStartIncluding": "17.3",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.12.6",
                    "versionStartIncluding": "16.12",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2.9.18",
                    "versionStartIncluding": "2.0.0",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-40114"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Debian",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "171060"
          }
        ],
        "trust": 0.1
      },
      "cve": "CVE-2021-40114",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "HIGH",
                "trust": 1.0,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "Low",
                "accessVector": "Network",
                "authentication": "None",
                "author": "NVD",
                "availabilityImpact": "Complete",
                "baseScore": 7.8,
                "confidentialityImpact": "None",
                "exploitabilityScore": null,
                "id": "CVE-2021-40114",
                "impactScore": null,
                "integrityImpact": "None",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "High",
                "trust": 0.9,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "VHN-401507",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "NVD",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 3.9,
                "impactScore": 3.6,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "author": "ykramarz@cisco.com",
                "availabilityImpact": "HIGH",
                "baseScore": 6.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 2.2,
                "impactScore": 4.0,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Network",
                "author": "NVD",
                "availabilityImpact": "High",
                "baseScore": 7.5,
                "baseSeverity": "High",
                "confidentialityImpact": "None",
                "exploitabilityScore": null,
                "id": "CVE-2021-40114",
                "impactScore": null,
                "integrityImpact": "None",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "None",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2021-40114",
                "trust": 1.8,
                "value": "HIGH"
              },
              {
                "author": "ykramarz@cisco.com",
                "id": "CVE-2021-40114",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202110-1976",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-401507",
                "trust": 0.1,
                "value": "HIGH"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-40114",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-401507"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-40114"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-014296"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-40114"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-40114"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202110-1976"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload. plural Cisco products and Snort Contains a vulnerability regarding the lack of free memory after expiration.Service operation interruption (DoS) It may be in a state. \n\nFor the stable distribution (bullseye), these problems have been fixed in\nversion 2.9.20-0+deb11u1. \n\nWe recommend that you upgrade your snort packages. \n\nFor the detailed security status of snort please refer to\nits security tracker page at:\nhttps://security-tracker.debian.org/tracker/snort\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n-----BEGIN PGP SIGNATURE-----\n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\ncyzVbz9Q+fC+gXwDusZccBqfD7rByEFWXflBFI4PDXRrW+NPy8w\\xdb5k\n-----END PGP SIGNATURE-----\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-40114"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-014296"
          },
          {
            "db": "VULHUB",
            "id": "VHN-401507"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-40114"
          },
          {
            "db": "PACKETSTORM",
            "id": "171060"
          }
        ],
        "trust": 1.89
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-40114",
            "trust": 3.5
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-014296",
            "trust": 0.8
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.3600",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2023.1047",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2023.0833",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021102917",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202110-1976",
            "trust": 0.6
          },
          {
            "db": "PACKETSTORM",
            "id": "171060",
            "trust": 0.2
          },
          {
            "db": "VULHUB",
            "id": "VHN-401507",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-40114",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-401507"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-40114"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-014296"
          },
          {
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-40114"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202110-1976"
          }
        ]
      },
      "id": "VAR-202110-1353",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-401507"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2023-12-18T11:44:36.156000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Top\u00a0Page Cisco Systems Cisco\u00a0Security\u00a0Advisory",
            "trust": 0.8,
            "url": "https://www.snort.org/"
          },
          {
            "title": "Cisco Products Snort Security vulnerabilities",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqbyid.tag?id=168885"
          },
          {
            "title": "Cisco: Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts\u0026qid=cisco-sa-snort-dos-s2r7w9uu"
          },
          {
            "title": "Debian CVElist Bug Report Logs: snort: CVE-2020-3315 CVE-2021-1223 CVE-2021-1224 CVE-2021-1494 CVE-2021-1495 CVE-2021-34749 CVE-2021-40114",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=1773b4dd82d4d83f1431e21300c33475"
          },
          {
            "title": "Debian Security Advisories: DSA-5354-1 snort -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=6ecec49445da07dca8fb53a5a107855c"
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/live-hack-cve/cve-2021-40114 "
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2021-40114"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-014296"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202110-1976"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-401",
            "trust": 1.1
          },
          {
            "problemtype": "Lack of memory release after expiration (CWE-401) [NVD evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-401507"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-014296"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-40114"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.5,
            "url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-snort-dos-s2r7w9uu"
          },
          {
            "trust": 1.8,
            "url": "https://www.debian.org/security/2023/dsa-5354"
          },
          {
            "trust": 1.8,
            "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
          },
          {
            "trust": 1.5,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-40114"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.3600"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021102917"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2023.0833"
          },
          {
            "trust": 0.6,
            "url": "https://vigilance.fr/vulnerability/snort-memory-leak-via-icmp-traffic-36735"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2023.1047"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/401.html"
          },
          {
            "trust": 0.1,
            "url": "https://github.com/live-hack-cve/cve-2021-40114"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-34749"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1495"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-3299"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1223"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-3315"
          },
          {
            "trust": 0.1,
            "url": "https://security-tracker.debian.org/tracker/snort"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1236"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1494"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1224"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/faq"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-401507"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-40114"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-014296"
          },
          {
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-40114"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202110-1976"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-401507"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-40114"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-014296"
          },
          {
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-40114"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202110-1976"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-10-27T00:00:00",
            "db": "VULHUB",
            "id": "VHN-401507"
          },
          {
            "date": "2021-10-27T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-40114"
          },
          {
            "date": "2022-10-12T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-014296"
          },
          {
            "date": "2023-02-20T16:53:59",
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "date": "2021-10-27T19:15:08.667000",
            "db": "NVD",
            "id": "CVE-2021-40114"
          },
          {
            "date": "2021-10-27T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202110-1976"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2023-02-19T00:00:00",
            "db": "VULHUB",
            "id": "VHN-401507"
          },
          {
            "date": "2023-02-19T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-40114"
          },
          {
            "date": "2022-10-12T07:17:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-014296"
          },
          {
            "date": "2023-11-07T03:38:28.330000",
            "db": "NVD",
            "id": "CVE-2021-40114"
          },
          {
            "date": "2023-02-21T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202110-1976"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202110-1976"
          }
        ],
        "trust": 0.7
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "plural \u00a0Cisco\u00a0 products and \u00a0Snort\u00a0 Vulnerability regarding lack of memory release after expiration in",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-014296"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202110-1976"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202101-0781

    Vulnerability from variot - Updated: 2023-12-18 11:31

    Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of an HTTP range header. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass configured file policy for HTTP packets and deliver a malicious payload. plural Cisco The product contains a privilege management vulnerability.Information may be tampered with. Cisco Firepower Threat Defense (FTD) and others are products of Cisco (Cisco). Cisco Firepower Threat Defense is a suite of unified software that provides next-generation firewall services. Cisco 3000 Series Industrial Security Appliances are 3000 Series Industrial Security Appliances. Cisco Cloud Services Router 1000V Series is a 1000v series cloud service routing software. Several Cisco products have security vulnerabilities. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512


    Debian Security Advisory DSA-5354-1 security@debian.org https://www.debian.org/security/ Markus Koschany February 18, 2023 https://www.debian.org/security/faq


    Package : snort CVE ID : CVE-2020-3299 CVE-2020-3315 CVE-2021-1223 CVE-2021-1224 CVE-2021-1236 CVE-2021-1494 CVE-2021-1495 CVE-2021-34749 CVE-2021-40114 Debian Bug : 1021276

    Multiple security vulnerabilities were discovered in snort, a flexible Network Intrusion Detection System, which could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or bypass filtering technology on an affected device and ex-filtrate data from a compromised host.

    For the stable distribution (bullseye), these problems have been fixed in version 2.9.20-0+deb11u1.

    We recommend that you upgrade your snort packages.

    For the detailed security status of snort please refer to its security tracker page at: https://security-tracker.debian.org/tracker/snort

    Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE-----

    iQKTBAEBCgB9FiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAmPw/Y5fFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQACgkQ2a0UuVE7 UeQRrA/9EQ9kF1LT2fYUGFMyKeCQQFTB8tfIsyz2VUrGUtWlVDKsDVqfEMWa6Zwx rAaFnAPOBi1KNX1laencuphuiDIxLmvA0ShpHKo/R3vY4WXmNwJMjPWNr82oTw8j CEggyfj9i5V1EwZZi0B3L4WP1pCQcJRN6XVB3FJWZScyQFtRH0xO7l9acIV68lTs 9hGDDe2wn5ufHh0sXskZitgYoXfdHjjl3CzFxrmGGDq9KFr8rDIEUnZrm58DCRNL RkDmvxrEEsXGmzQlhT/2ea88aIXgNM4xnDztr3iV1v8JOMb6BwehrH43NgdDb5V8 6xBcHuXOLNI75mca1TQxwUd8PSNo3YK60IbDC2ztcUIIvl1xk8bDFyABb3gKvGoR izKFYej4hNeZb+0HWHsnO9vvP4t6LkKF/iIGNNVNmA9ZJA94ESCfItSozIITqRE2 sJQ43X9uQhX2p/dfeyNoOJDhie0RyZyg0rPxIDNonP1YJ8kTjMMHnRNqGn9MkVYK bNr1/sdLhH0TXvs5XoL9b9YjUPL67hDHL9bHLByOKNSxXrth+TcqFX+eg7Bztn1A vS4Sc2TWCuBa3jdrS9WJiy58aB1sTABRhN+tY4wVs+A9vIr1dKHn4wsB8axmpYDW cyzVbz9Q+fC+gXwDusZccBqfD7rByEFWXflBFI4PDXRrW+NPy8w\xdb5k -----END PGP SIGNATURE-----

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202101-0781",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "ios xe",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "17.4.1"
          },
          {
            "model": "firepower management center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.9.14.0"
          },
          {
            "model": "firepower threat defense",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.7.0"
          },
          {
            "model": "firepower management center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.9.16"
          },
          {
            "model": "firepower management center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.9.15"
          },
          {
            "model": "snort",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "snort",
            "version": "2.9.17"
          },
          {
            "model": "cisco firepower threat defense \u30bd\u30d5\u30c8\u30a6\u30a7\u30a2",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          },
          {
            "model": "cisco firepower management center",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          },
          {
            "model": "snort",
            "scope": null,
            "trust": 0.8,
            "vendor": "snort",
            "version": null
          },
          {
            "model": "cisco ios xe",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002549"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1223"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.14.0:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.15:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.16:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "6.7.0",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "versionEndExcluding": "17.4.1",
                        "vulnerable": true
                      }
                    ],
                    "operator": "OR"
                  },
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1100-4p_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1100-8p_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1101-4p_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1109-2p_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1109-4p_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1111x-8p_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4221_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4321_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4331_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4351_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4431_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4451-x_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4461_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:csr_1000v:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:isa_3000:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      }
                    ],
                    "operator": "OR"
                  }
                ],
                "cpe_match": [],
                "operator": "AND"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2.9.17",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-1223"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Debian",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "171060"
          }
        ],
        "trust": 0.1
      },
      "cve": "CVE-2021-1223",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "impactScore": 2.9,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "Low",
                "accessVector": "Network",
                "authentication": "None",
                "author": "NVD",
                "availabilityImpact": "None",
                "baseScore": 5.0,
                "confidentialityImpact": "None",
                "exploitabilityScore": null,
                "id": "CVE-2021-1223",
                "impactScore": null,
                "integrityImpact": "Partial",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "Medium",
                "trust": 0.9,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "VHN-374277",
                "impactScore": 2.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:N/I:P/A:N",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "NVD",
                "availabilityImpact": "NONE",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 3.9,
                "impactScore": 3.6,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
                "version": "3.1"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "ykramarz@cisco.com",
                "availabilityImpact": "NONE",
                "baseScore": 5.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 3.9,
                "impactScore": 1.4,
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
                "version": "3.0"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Network",
                "author": "NVD",
                "availabilityImpact": "None",
                "baseScore": 7.5,
                "baseSeverity": "High",
                "confidentialityImpact": "None",
                "exploitabilityScore": null,
                "id": "CVE-2021-1223",
                "impactScore": null,
                "integrityImpact": "High",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "None",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2021-1223",
                "trust": 1.8,
                "value": "HIGH"
              },
              {
                "author": "ykramarz@cisco.com",
                "id": "CVE-2021-1223",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202101-1060",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-374277",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-1223",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-374277"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1223"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002549"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1223"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1223"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1060"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of an HTTP range header. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass configured file policy for HTTP packets and deliver a malicious payload. plural Cisco The product contains a privilege management vulnerability.Information may be tampered with. Cisco Firepower Threat Defense (FTD) and others are products of Cisco (Cisco). Cisco Firepower Threat Defense is a suite of unified software that provides next-generation firewall services. Cisco 3000 Series Industrial Security Appliances are 3000 Series Industrial Security Appliances. Cisco Cloud Services Router 1000V Series is a 1000v series cloud service routing software. Several Cisco products have security vulnerabilities. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA512\n\n- -------------------------------------------------------------------------\nDebian Security Advisory DSA-5354-1                   security@debian.org\nhttps://www.debian.org/security/                          Markus Koschany\nFebruary 18, 2023                     https://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage        : snort\nCVE ID         : CVE-2020-3299 CVE-2020-3315 CVE-2021-1223 CVE-2021-1224\n                 CVE-2021-1236 CVE-2021-1494 CVE-2021-1495 CVE-2021-34749\n                 CVE-2021-40114\nDebian Bug     : 1021276\n\nMultiple security vulnerabilities were discovered in snort, a flexible Network\nIntrusion Detection System, which could allow an unauthenticated, remote\nattacker to cause a denial of service (DoS) condition or bypass filtering\ntechnology on an affected device and ex-filtrate data from a compromised host. \n\nFor the stable distribution (bullseye), these problems have been fixed in\nversion 2.9.20-0+deb11u1. \n\nWe recommend that you upgrade your snort packages. \n\nFor the detailed security status of snort please refer to\nits security tracker page at:\nhttps://security-tracker.debian.org/tracker/snort\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n-----BEGIN PGP SIGNATURE-----\n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\ncyzVbz9Q+fC+gXwDusZccBqfD7rByEFWXflBFI4PDXRrW+NPy8w\\xdb5k\n-----END PGP SIGNATURE-----\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-1223"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002549"
          },
          {
            "db": "VULHUB",
            "id": "VHN-374277"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1223"
          },
          {
            "db": "PACKETSTORM",
            "id": "171060"
          }
        ],
        "trust": 1.89
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-1223",
            "trust": 2.7
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002549",
            "trust": 0.8
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.0139",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2023.1047",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2023.0833",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1060",
            "trust": 0.6
          },
          {
            "db": "PACKETSTORM",
            "id": "171060",
            "trust": 0.2
          },
          {
            "db": "VULHUB",
            "id": "VHN-374277",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1223",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-374277"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1223"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002549"
          },
          {
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1223"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1060"
          }
        ]
      },
      "id": "VAR-202101-0781",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-374277"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2023-12-18T11:31:56.847000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Top\u00a0Page Cisco Systems Cisco\u00a0Security\u00a0Advisory",
            "trust": 0.8,
            "url": "https://www.snort.org/"
          },
          {
            "title": "Multiple Cisco Product security vulnerabilities",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqbyid.tag?id=139162"
          },
          {
            "title": "Cisco: Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts\u0026qid=cisco-sa-snort-filepolbypass-67dewme2"
          },
          {
            "title": "Debian CVElist Bug Report Logs: snort: CVE-2020-3315 CVE-2021-1223 CVE-2021-1224 CVE-2021-1494 CVE-2021-1495 CVE-2021-34749 CVE-2021-40114",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=1773b4dd82d4d83f1431e21300c33475"
          },
          {
            "title": "Debian Security Advisories: DSA-5354-1 snort -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=6ecec49445da07dca8fb53a5a107855c"
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/live-hack-cve/cve-2021-1223 "
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2021-1223"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002549"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1060"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          },
          {
            "problemtype": "Improper authority management (CWE-269) [NVD Evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002549"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1223"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.5,
            "url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-snort-filepolbypass-67dewme2"
          },
          {
            "trust": 1.8,
            "url": "https://www.debian.org/security/2023/dsa-5354"
          },
          {
            "trust": 1.8,
            "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
          },
          {
            "trust": 1.5,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1223"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2023.0833"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2023.1047"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.0139/"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/.html"
          },
          {
            "trust": 0.1,
            "url": "https://github.com/live-hack-cve/cve-2021-1223"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-34749"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1495"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-40114"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-3299"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-3315"
          },
          {
            "trust": 0.1,
            "url": "https://security-tracker.debian.org/tracker/snort"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1236"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1494"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1224"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/faq"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-374277"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1223"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002549"
          },
          {
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1223"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1060"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-374277"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1223"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002549"
          },
          {
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1223"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1060"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-01-13T00:00:00",
            "db": "VULHUB",
            "id": "VHN-374277"
          },
          {
            "date": "2021-01-13T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-1223"
          },
          {
            "date": "2021-09-22T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-002549"
          },
          {
            "date": "2023-02-20T16:53:59",
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "date": "2021-01-13T22:15:20.317000",
            "db": "NVD",
            "id": "CVE-2021-1223"
          },
          {
            "date": "2021-01-13T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202101-1060"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2023-02-19T00:00:00",
            "db": "VULHUB",
            "id": "VHN-374277"
          },
          {
            "date": "2023-02-19T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-1223"
          },
          {
            "date": "2021-09-22T08:52:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-002549"
          },
          {
            "date": "2023-05-22T18:57:24.750000",
            "db": "NVD",
            "id": "CVE-2021-1223"
          },
          {
            "date": "2023-02-21T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202101-1060"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1060"
          }
        ],
        "trust": 0.7
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "plural \u00a0Cisco\u00a0 Product permission management vulnerabilities",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002549"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1060"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202101-0782

    Vulnerability from variot - Updated: 2023-12-18 11:25

    Multiple Cisco products are affected by a vulnerability with TCP Fast Open (TFO) when used in conjunction with the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect detection of the HTTP payload if it is contained at least partially within the TFO connection handshake. An attacker could exploit this vulnerability by sending crafted TFO packets with an HTTP payload through an affected device. A successful exploit could allow the attacker to bypass configured file policy for HTTP packets and deliver a malicious payload. plural Cisco The product contains a privilege management vulnerability.Information may be tampered with. Cisco 3000 Series Industrial Security Appliances, etc. are all products of Cisco (Cisco). Cisco 3000 Series Industrial Security Appliances are 3000 Series Industrial Security Appliances. Cisco 4000 Series Integrated Services Routers (ISRS) are 4000 Series enterprise-class multiservice routers. Cisco Cloud Services Router 1000V Series is a 1000v series cloud service routing software. A security vulnerability exists in several Cisco products. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512


    Debian Security Advisory DSA-5354-1 security@debian.org https://www.debian.org/security/ Markus Koschany February 18, 2023 https://www.debian.org/security/faq


    Package : snort CVE ID : CVE-2020-3299 CVE-2020-3315 CVE-2021-1223 CVE-2021-1224 CVE-2021-1236 CVE-2021-1494 CVE-2021-1495 CVE-2021-34749 CVE-2021-40114 Debian Bug : 1021276

    Multiple security vulnerabilities were discovered in snort, a flexible Network Intrusion Detection System, which could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or bypass filtering technology on an affected device and ex-filtrate data from a compromised host.

    For the stable distribution (bullseye), these problems have been fixed in version 2.9.20-0+deb11u1.

    We recommend that you upgrade your snort packages.

    For the detailed security status of snort please refer to its security tracker page at: https://security-tracker.debian.org/tracker/snort

    Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE-----

    iQKTBAEBCgB9FiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAmPw/Y5fFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQACgkQ2a0UuVE7 UeQRrA/9EQ9kF1LT2fYUGFMyKeCQQFTB8tfIsyz2VUrGUtWlVDKsDVqfEMWa6Zwx rAaFnAPOBi1KNX1laencuphuiDIxLmvA0ShpHKo/R3vY4WXmNwJMjPWNr82oTw8j CEggyfj9i5V1EwZZi0B3L4WP1pCQcJRN6XVB3FJWZScyQFtRH0xO7l9acIV68lTs 9hGDDe2wn5ufHh0sXskZitgYoXfdHjjl3CzFxrmGGDq9KFr8rDIEUnZrm58DCRNL RkDmvxrEEsXGmzQlhT/2ea88aIXgNM4xnDztr3iV1v8JOMb6BwehrH43NgdDb5V8 6xBcHuXOLNI75mca1TQxwUd8PSNo3YK60IbDC2ztcUIIvl1xk8bDFyABb3gKvGoR izKFYej4hNeZb+0HWHsnO9vvP4t6LkKF/iIGNNVNmA9ZJA94ESCfItSozIITqRE2 sJQ43X9uQhX2p/dfeyNoOJDhie0RyZyg0rPxIDNonP1YJ8kTjMMHnRNqGn9MkVYK bNr1/sdLhH0TXvs5XoL9b9YjUPL67hDHL9bHLByOKNSxXrth+TcqFX+eg7Bztn1A vS4Sc2TWCuBa3jdrS9WJiy58aB1sTABRhN+tY4wVs+A9vIr1dKHn4wsB8axmpYDW cyzVbz9Q+fC+gXwDusZccBqfD7rByEFWXflBFI4PDXRrW+NPy8w\xdb5k -----END PGP SIGNATURE-----

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202101-0782",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "meraki mx67c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": "firepower management center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.9.16"
          },
          {
            "model": "meraki mx450",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": "meraki mx67",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": "firepower management center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.9.15"
          },
          {
            "model": "firepower management center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.9.17"
          },
          {
            "model": "meraki mx68",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": "meraki mx64",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": "meraki mx68cw",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": "snort",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "snort",
            "version": "2.9.17"
          },
          {
            "model": "meraki mx64w",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": "firepower management center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.0.1"
          },
          {
            "model": "meraki mx68w",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": "meraki mx84",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": "ios xe",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "17.4.1"
          },
          {
            "model": "firepower management center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.9.14.0"
          },
          {
            "model": "firepower threat defense",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.7.0"
          },
          {
            "model": "meraki mx250",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": "firepower management center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.9.18"
          },
          {
            "model": "meraki mx67w",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": "meraki mx100",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": "cisco-meraki mx68cw",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          },
          {
            "model": "cisco-meraki mx67w",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          },
          {
            "model": "snort",
            "scope": null,
            "trust": 0.8,
            "vendor": "snort",
            "version": null
          },
          {
            "model": "cisco ios xe",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          },
          {
            "model": "cisco-meraki mx67",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          },
          {
            "model": "cisco firepower threat defense \u30bd\u30d5\u30c8\u30a6\u30a7\u30a2",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          },
          {
            "model": "cisco-meraki mx68",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          },
          {
            "model": "cisco firepower management center",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          },
          {
            "model": "cisco-meraki mx64",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          },
          {
            "model": "cisco-meraki mx64w",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          },
          {
            "model": "cisco-meraki mx67c",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002550"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1224"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.14.0:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.15:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.16:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "6.7.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.17:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.18:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:3.0.1:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "versionEndExcluding": "17.4.1",
                        "vulnerable": true
                      }
                    ],
                    "operator": "OR"
                  },
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1100-4p_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1100-8p_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1101-4p_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1109-2p_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1109-4p_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1111x-8p_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4221_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4321_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4331_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4351_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4431_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4451-x_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4461_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:csr_1000v:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:isa_3000:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      }
                    ],
                    "operator": "OR"
                  }
                ],
                "cpe_match": [],
                "operator": "AND"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2.9.17",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:o:cisco:meraki_mx64_firmware:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": true
                      }
                    ],
                    "operator": "OR"
                  },
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:meraki_mx64:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      }
                    ],
                    "operator": "OR"
                  }
                ],
                "cpe_match": [],
                "operator": "AND"
              },
              {
                "children": [
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:o:cisco:meraki_mx64w_firmware:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": true
                      }
                    ],
                    "operator": "OR"
                  },
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:meraki_mx64w:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      }
                    ],
                    "operator": "OR"
                  }
                ],
                "cpe_match": [],
                "operator": "AND"
              },
              {
                "children": [
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:o:cisco:meraki_mx67_firmware:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": true
                      }
                    ],
                    "operator": "OR"
                  },
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:meraki_mx67:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      }
                    ],
                    "operator": "OR"
                  }
                ],
                "cpe_match": [],
                "operator": "AND"
              },
              {
                "children": [
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:o:cisco:meraki_mx67c_firmware:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": true
                      }
                    ],
                    "operator": "OR"
                  },
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:meraki_mx67c:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      }
                    ],
                    "operator": "OR"
                  }
                ],
                "cpe_match": [],
                "operator": "AND"
              },
              {
                "children": [
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:o:cisco:meraki_mx67w_firmware:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": true
                      }
                    ],
                    "operator": "OR"
                  },
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:meraki_mx67w:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      }
                    ],
                    "operator": "OR"
                  }
                ],
                "cpe_match": [],
                "operator": "AND"
              },
              {
                "children": [
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:o:cisco:meraki_mx68_firmware:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": true
                      }
                    ],
                    "operator": "OR"
                  },
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:meraki_mx68:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      }
                    ],
                    "operator": "OR"
                  }
                ],
                "cpe_match": [],
                "operator": "AND"
              },
              {
                "children": [
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:o:cisco:meraki_mx68cw_firmware:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": true
                      }
                    ],
                    "operator": "OR"
                  },
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:meraki_mx68cw:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      }
                    ],
                    "operator": "OR"
                  }
                ],
                "cpe_match": [],
                "operator": "AND"
              },
              {
                "children": [
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:o:cisco:meraki_mx68w_firmware:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": true
                      }
                    ],
                    "operator": "OR"
                  },
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:meraki_mx68w:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      }
                    ],
                    "operator": "OR"
                  }
                ],
                "cpe_match": [],
                "operator": "AND"
              },
              {
                "children": [
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:o:cisco:meraki_mx100_firmware:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": true
                      }
                    ],
                    "operator": "OR"
                  },
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:meraki_mx100:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      }
                    ],
                    "operator": "OR"
                  }
                ],
                "cpe_match": [],
                "operator": "AND"
              },
              {
                "children": [
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:o:cisco:meraki_mx84_firmware:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": true
                      }
                    ],
                    "operator": "OR"
                  },
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:meraki_mx84:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      }
                    ],
                    "operator": "OR"
                  }
                ],
                "cpe_match": [],
                "operator": "AND"
              },
              {
                "children": [
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:o:cisco:meraki_mx250_firmware:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": true
                      }
                    ],
                    "operator": "OR"
                  },
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:meraki_mx250:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      }
                    ],
                    "operator": "OR"
                  }
                ],
                "cpe_match": [],
                "operator": "AND"
              },
              {
                "children": [
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:o:cisco:meraki_mx450_firmware:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": true
                      }
                    ],
                    "operator": "OR"
                  },
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:meraki_mx450:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      }
                    ],
                    "operator": "OR"
                  }
                ],
                "cpe_match": [],
                "operator": "AND"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-1224"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Debian",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "171060"
          }
        ],
        "trust": 0.1
      },
      "cve": "CVE-2021-1224",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "impactScore": 2.9,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "Low",
                "accessVector": "Network",
                "authentication": "None",
                "author": "NVD",
                "availabilityImpact": "None",
                "baseScore": 5.0,
                "confidentialityImpact": "None",
                "exploitabilityScore": null,
                "id": "CVE-2021-1224",
                "impactScore": null,
                "integrityImpact": "Partial",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "Medium",
                "trust": 0.9,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "VHN-374278",
                "impactScore": 2.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:N/I:P/A:N",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "NVD",
                "availabilityImpact": "NONE",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 3.9,
                "impactScore": 1.4,
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
                "version": "3.1"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "ykramarz@cisco.com",
                "availabilityImpact": "NONE",
                "baseScore": 5.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 3.9,
                "impactScore": 1.4,
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Network",
                "author": "NVD",
                "availabilityImpact": "None",
                "baseScore": 5.3,
                "baseSeverity": "Medium",
                "confidentialityImpact": "None",
                "exploitabilityScore": null,
                "id": "CVE-2021-1224",
                "impactScore": null,
                "integrityImpact": "Low",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "None",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2021-1224",
                "trust": 1.8,
                "value": "MEDIUM"
              },
              {
                "author": "ykramarz@cisco.com",
                "id": "CVE-2021-1224",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202101-965",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-374278",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-1224",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-374278"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1224"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002550"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1224"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1224"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-965"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple Cisco products are affected by a vulnerability with TCP Fast Open (TFO) when used in conjunction with the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect detection of the HTTP payload if it is contained at least partially within the TFO connection handshake. An attacker could exploit this vulnerability by sending crafted TFO packets with an HTTP payload through an affected device. A successful exploit could allow the attacker to bypass configured file policy for HTTP packets and deliver a malicious payload. plural Cisco The product contains a privilege management vulnerability.Information may be tampered with. Cisco 3000 Series Industrial Security Appliances, etc. are all products of Cisco (Cisco). Cisco 3000 Series Industrial Security Appliances are 3000 Series Industrial Security Appliances. Cisco 4000 Series Integrated Services Routers (ISRS) are 4000 Series enterprise-class multiservice routers. Cisco Cloud Services Router 1000V Series is a 1000v series cloud service routing software. A security vulnerability exists in several Cisco products. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA512\n\n- -------------------------------------------------------------------------\nDebian Security Advisory DSA-5354-1                   security@debian.org\nhttps://www.debian.org/security/                          Markus Koschany\nFebruary 18, 2023                     https://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage        : snort\nCVE ID         : CVE-2020-3299 CVE-2020-3315 CVE-2021-1223 CVE-2021-1224\n                 CVE-2021-1236 CVE-2021-1494 CVE-2021-1495 CVE-2021-34749\n                 CVE-2021-40114\nDebian Bug     : 1021276\n\nMultiple security vulnerabilities were discovered in snort, a flexible Network\nIntrusion Detection System, which could allow an unauthenticated, remote\nattacker to cause a denial of service (DoS) condition or bypass filtering\ntechnology on an affected device and ex-filtrate data from a compromised host. \n\nFor the stable distribution (bullseye), these problems have been fixed in\nversion 2.9.20-0+deb11u1. \n\nWe recommend that you upgrade your snort packages. \n\nFor the detailed security status of snort please refer to\nits security tracker page at:\nhttps://security-tracker.debian.org/tracker/snort\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n-----BEGIN PGP SIGNATURE-----\n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\ncyzVbz9Q+fC+gXwDusZccBqfD7rByEFWXflBFI4PDXRrW+NPy8w\\xdb5k\n-----END PGP SIGNATURE-----\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-1224"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002550"
          },
          {
            "db": "VULHUB",
            "id": "VHN-374278"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1224"
          },
          {
            "db": "PACKETSTORM",
            "id": "171060"
          }
        ],
        "trust": 1.89
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-1224",
            "trust": 2.7
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002550",
            "trust": 0.8
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.0138",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2023.1047",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2023.0833",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-965",
            "trust": 0.6
          },
          {
            "db": "PACKETSTORM",
            "id": "171060",
            "trust": 0.2
          },
          {
            "db": "VULHUB",
            "id": "VHN-374278",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1224",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-374278"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1224"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002550"
          },
          {
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1224"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-965"
          }
        ]
      },
      "id": "VAR-202101-0782",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-374278"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2023-12-18T11:25:01.402000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Top\u00a0Page Cisco Systems Cisco\u00a0Security\u00a0Advisory",
            "trust": 0.8,
            "url": "https://www.snort.org/"
          },
          {
            "title": "Cisco Various product security vulnerabilities",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqbyid.tag?id=139223"
          },
          {
            "title": "Cisco: Multiple Cisco Products Snort TCP Fast Open File Policy Bypass Vulnerability",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts\u0026qid=cisco-sa-snort-tfo-bypass-mmzzrtes"
          },
          {
            "title": "Debian CVElist Bug Report Logs: snort: CVE-2020-3315 CVE-2021-1223 CVE-2021-1224 CVE-2021-1494 CVE-2021-1495 CVE-2021-34749 CVE-2021-40114",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=1773b4dd82d4d83f1431e21300c33475"
          },
          {
            "title": "Debian Security Advisories: DSA-5354-1 snort -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=6ecec49445da07dca8fb53a5a107855c"
          },
          {
            "title": "threat-generator",
            "trust": 0.1,
            "url": "https://github.com/kernelr0p/threat-generator "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/live-hack-cve/cve-2021-1224 "
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2021-1224"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002550"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-965"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          },
          {
            "problemtype": "Improper authority management (CWE-269) [NVD Evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002550"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1224"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.5,
            "url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-snort-tfo-bypass-mmzzrtes"
          },
          {
            "trust": 1.8,
            "url": "https://www.debian.org/security/2023/dsa-5354"
          },
          {
            "trust": 1.8,
            "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
          },
          {
            "trust": 1.5,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1224"
          },
          {
            "trust": 0.6,
            "url": "https://vigilance.fr/vulnerability/cisco-meraki-mx-privilege-escalation-via-snort-tfo-policy-bypass-34314"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2023.0833"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2023.1047"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.0138/"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/.html"
          },
          {
            "trust": 0.1,
            "url": "https://github.com/kernelr0p/threat-generator"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-34749"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1495"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-40114"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-3299"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1223"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-3315"
          },
          {
            "trust": 0.1,
            "url": "https://security-tracker.debian.org/tracker/snort"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1236"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1494"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/faq"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-374278"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1224"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002550"
          },
          {
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1224"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-965"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-374278"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1224"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002550"
          },
          {
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1224"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-965"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-01-13T00:00:00",
            "db": "VULHUB",
            "id": "VHN-374278"
          },
          {
            "date": "2021-01-13T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-1224"
          },
          {
            "date": "2021-09-22T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-002550"
          },
          {
            "date": "2023-02-20T16:53:59",
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "date": "2021-01-13T22:15:20.410000",
            "db": "NVD",
            "id": "CVE-2021-1224"
          },
          {
            "date": "2021-01-13T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202101-965"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2023-02-19T00:00:00",
            "db": "VULHUB",
            "id": "VHN-374278"
          },
          {
            "date": "2023-02-19T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-1224"
          },
          {
            "date": "2021-09-22T08:52:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-002550"
          },
          {
            "date": "2023-11-07T03:27:44.583000",
            "db": "NVD",
            "id": "CVE-2021-1224"
          },
          {
            "date": "2023-02-21T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202101-965"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-965"
          }
        ],
        "trust": 0.7
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "plural \u00a0Cisco\u00a0 Product permission management vulnerabilities",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002550"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-965"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202101-1010

    Vulnerability from variot - Updated: 2023-12-18 11:24

    Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. The vulnerability is due to a flaw in the detection algorithm. An attacker could exploit this vulnerability by sending crafted packets that would flow through an affected system. A successful exploit could allow the attacker to bypass the configured policies and deliver a malicious payload to the protected network. plural Cisco The product is always vulnerable to improper control flow implementation.Information may be tampered with. Cisco RV110W, etc. are all routers of Cisco (Cisco). The following products and versions are affected: Cisco RV110W, Cisco RV130, Cisco RV130W, Cisco RV215W. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512


    Debian Security Advisory DSA-5354-1 security@debian.org https://www.debian.org/security/ Markus Koschany February 18, 2023 https://www.debian.org/security/faq


    Package : snort CVE ID : CVE-2020-3299 CVE-2020-3315 CVE-2021-1223 CVE-2021-1224 CVE-2021-1236 CVE-2021-1494 CVE-2021-1495 CVE-2021-34749 CVE-2021-40114 Debian Bug : 1021276

    Multiple security vulnerabilities were discovered in snort, a flexible Network Intrusion Detection System, which could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or bypass filtering technology on an affected device and ex-filtrate data from a compromised host.

    For the stable distribution (bullseye), these problems have been fixed in version 2.9.20-0+deb11u1.

    We recommend that you upgrade your snort packages.

    For the detailed security status of snort please refer to its security tracker page at: https://security-tracker.debian.org/tracker/snort

    Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE-----

    iQKTBAEBCgB9FiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAmPw/Y5fFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQACgkQ2a0UuVE7 UeQRrA/9EQ9kF1LT2fYUGFMyKeCQQFTB8tfIsyz2VUrGUtWlVDKsDVqfEMWa6Zwx rAaFnAPOBi1KNX1laencuphuiDIxLmvA0ShpHKo/R3vY4WXmNwJMjPWNr82oTw8j CEggyfj9i5V1EwZZi0B3L4WP1pCQcJRN6XVB3FJWZScyQFtRH0xO7l9acIV68lTs 9hGDDe2wn5ufHh0sXskZitgYoXfdHjjl3CzFxrmGGDq9KFr8rDIEUnZrm58DCRNL RkDmvxrEEsXGmzQlhT/2ea88aIXgNM4xnDztr3iV1v8JOMb6BwehrH43NgdDb5V8 6xBcHuXOLNI75mca1TQxwUd8PSNo3YK60IbDC2ztcUIIvl1xk8bDFyABb3gKvGoR izKFYej4hNeZb+0HWHsnO9vvP4t6LkKF/iIGNNVNmA9ZJA94ESCfItSozIITqRE2 sJQ43X9uQhX2p/dfeyNoOJDhie0RyZyg0rPxIDNonP1YJ8kTjMMHnRNqGn9MkVYK bNr1/sdLhH0TXvs5XoL9b9YjUPL67hDHL9bHLByOKNSxXrth+TcqFX+eg7Bztn1A vS4Sc2TWCuBa3jdrS9WJiy58aB1sTABRhN+tY4wVs+A9vIr1dKHn4wsB8axmpYDW cyzVbz9Q+fC+gXwDusZccBqfD7rByEFWXflBFI4PDXRrW+NPy8w\xdb5k -----END PGP SIGNATURE-----

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202101-1010",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "ios xe",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "17.4.1"
          },
          {
            "model": "firepower management center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.9.14.0"
          },
          {
            "model": "firepower management center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.9.16"
          },
          {
            "model": "firepower threat defense",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.5.0.5"
          },
          {
            "model": "snort",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "snort",
            "version": "2.9.14"
          },
          {
            "model": "firepower management center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.9.14.14"
          },
          {
            "model": "firepower management center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.9.15"
          },
          {
            "model": "firepower management center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.9.17"
          },
          {
            "model": "cisco firepower threat defense \u30bd\u30d5\u30c8\u30a6\u30a7\u30a2",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          },
          {
            "model": "cisco firepower management center",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          },
          {
            "model": "snort",
            "scope": null,
            "trust": 0.8,
            "vendor": "snort",
            "version": null
          },
          {
            "model": "cisco ios xe",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002553"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1236"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "versionEndExcluding": "17.4.1",
                        "vulnerable": true
                      }
                    ],
                    "operator": "OR"
                  },
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1100-4p_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1100-8p_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1101-4p_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1109-2p_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1109-4p_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1111x-8p_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4221_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4321_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4331_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4351_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4431_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4451-x_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4461_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:csr_1000v:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:isa_3000:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      }
                    ],
                    "operator": "OR"
                  }
                ],
                "cpe_match": [],
                "operator": "AND"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.14.0:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.15:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.16:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.17:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.14.14:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "6.5.0.5",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2.9.14",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-1236"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Debian",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "171060"
          }
        ],
        "trust": 0.1
      },
      "cve": "CVE-2021-1236",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "impactScore": 2.9,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "Low",
                "accessVector": "Network",
                "authentication": "None",
                "author": "NVD",
                "availabilityImpact": "None",
                "baseScore": 5.0,
                "confidentialityImpact": "None",
                "exploitabilityScore": null,
                "id": "CVE-2021-1236",
                "impactScore": null,
                "integrityImpact": "Partial",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "Medium",
                "trust": 0.9,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "VHN-374290",
                "impactScore": 2.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:N/I:P/A:N",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "NVD",
                "availabilityImpact": "NONE",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 3.9,
                "impactScore": 1.4,
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
                "version": "3.1"
              },
              {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "author": "ykramarz@cisco.com",
                "availabilityImpact": "NONE",
                "baseScore": 4.0,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 2.2,
                "impactScore": 1.4,
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N",
                "version": "3.0"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Network",
                "author": "NVD",
                "availabilityImpact": "None",
                "baseScore": 5.3,
                "baseSeverity": "Medium",
                "confidentialityImpact": "None",
                "exploitabilityScore": null,
                "id": "CVE-2021-1236",
                "impactScore": null,
                "integrityImpact": "Low",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "None",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2021-1236",
                "trust": 1.8,
                "value": "MEDIUM"
              },
              {
                "author": "ykramarz@cisco.com",
                "id": "CVE-2021-1236",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202101-964",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-374290",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-1236",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-374290"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1236"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002553"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1236"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1236"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-964"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. The vulnerability is due to a flaw in the detection algorithm. An attacker could exploit this vulnerability by sending crafted packets that would flow through an affected system. A successful exploit could allow the attacker to bypass the configured policies and deliver a malicious payload to the protected network. plural Cisco The product is always vulnerable to improper control flow implementation.Information may be tampered with. Cisco RV110W, etc. are all routers of Cisco (Cisco). The following products and versions are affected: Cisco RV110W, Cisco RV130, Cisco RV130W, Cisco RV215W. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA512\n\n- -------------------------------------------------------------------------\nDebian Security Advisory DSA-5354-1                   security@debian.org\nhttps://www.debian.org/security/                          Markus Koschany\nFebruary 18, 2023                     https://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage        : snort\nCVE ID         : CVE-2020-3299 CVE-2020-3315 CVE-2021-1223 CVE-2021-1224\n                 CVE-2021-1236 CVE-2021-1494 CVE-2021-1495 CVE-2021-34749\n                 CVE-2021-40114\nDebian Bug     : 1021276\n\nMultiple security vulnerabilities were discovered in snort, a flexible Network\nIntrusion Detection System, which could allow an unauthenticated, remote\nattacker to cause a denial of service (DoS) condition or bypass filtering\ntechnology on an affected device and ex-filtrate data from a compromised host. \n\nFor the stable distribution (bullseye), these problems have been fixed in\nversion 2.9.20-0+deb11u1. \n\nWe recommend that you upgrade your snort packages. \n\nFor the detailed security status of snort please refer to\nits security tracker page at:\nhttps://security-tracker.debian.org/tracker/snort\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n-----BEGIN PGP SIGNATURE-----\n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\ncyzVbz9Q+fC+gXwDusZccBqfD7rByEFWXflBFI4PDXRrW+NPy8w\\xdb5k\n-----END PGP SIGNATURE-----\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-1236"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002553"
          },
          {
            "db": "VULHUB",
            "id": "VHN-374290"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1236"
          },
          {
            "db": "PACKETSTORM",
            "id": "171060"
          }
        ],
        "trust": 1.89
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-1236",
            "trust": 2.7
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002553",
            "trust": 0.8
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.0140",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2023.1047",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.0140.2",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.2420",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2023.0833",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-964",
            "trust": 0.6
          },
          {
            "db": "PACKETSTORM",
            "id": "171060",
            "trust": 0.2
          },
          {
            "db": "VULHUB",
            "id": "VHN-374290",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1236",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-374290"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1236"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002553"
          },
          {
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1236"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-964"
          }
        ]
      },
      "id": "VAR-202101-1010",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-374290"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2023-12-18T11:24:12.145000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Top\u00a0Page Cisco Systems Cisco\u00a0Security\u00a0Advisory",
            "trust": 0.8,
            "url": "https://www.snort.org/"
          },
          {
            "title": "Cisco Various product security vulnerabilities",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqbyid.tag?id=139070"
          },
          {
            "title": "Cisco: Multiple Cisco Products Snort Application Detection Engine Policy Bypass Vulnerability",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts\u0026qid=cisco-sa-snort-app-bypass-csbycatq"
          },
          {
            "title": "Debian Security Advisories: DSA-5354-1 snort -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=6ecec49445da07dca8fb53a5a107855c"
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/live-hack-cve/cve-2021-1236 "
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2021-1236"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002553"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-964"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-670",
            "trust": 1.1
          },
          {
            "problemtype": "Always improper control flow implementation (CWE-670) [NVD Evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-374290"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002553"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1236"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.5,
            "url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-snort-app-bypass-csbycatq"
          },
          {
            "trust": 1.8,
            "url": "https://www.debian.org/security/2023/dsa-5354"
          },
          {
            "trust": 1.8,
            "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
          },
          {
            "trust": 1.5,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1236"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.0140/"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2023.0833"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2023.1047"
          },
          {
            "trust": 0.6,
            "url": "https://vigilance.fr/vulnerability/cisco-ios-xe-ingress-filtrering-bypass-via-snort-detection-bypass-36893"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.2420"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.0140.2"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/670.html"
          },
          {
            "trust": 0.1,
            "url": "https://github.com/live-hack-cve/cve-2021-1236"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-34749"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1495"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-40114"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-3299"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1223"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-3315"
          },
          {
            "trust": 0.1,
            "url": "https://security-tracker.debian.org/tracker/snort"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1494"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1224"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/faq"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-374290"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1236"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002553"
          },
          {
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1236"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-964"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-374290"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1236"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002553"
          },
          {
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1236"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-964"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-01-13T00:00:00",
            "db": "VULHUB",
            "id": "VHN-374290"
          },
          {
            "date": "2021-01-13T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-1236"
          },
          {
            "date": "2021-09-22T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-002553"
          },
          {
            "date": "2023-02-20T16:53:59",
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "date": "2021-01-13T22:15:20.583000",
            "db": "NVD",
            "id": "CVE-2021-1236"
          },
          {
            "date": "2021-01-13T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202101-964"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2023-02-19T00:00:00",
            "db": "VULHUB",
            "id": "VHN-374290"
          },
          {
            "date": "2023-02-19T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-1236"
          },
          {
            "date": "2021-09-22T08:52:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-002553"
          },
          {
            "date": "2023-05-22T18:57:24.750000",
            "db": "NVD",
            "id": "CVE-2021-1236"
          },
          {
            "date": "2023-02-21T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202101-964"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-964"
          }
        ],
        "trust": 0.7
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "plural \u00a0Cisco\u00a0 Product vulnerabilities to always improper control flow implementation",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002553"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-964"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200607-0504

    Vulnerability from variot - Updated: 2023-12-18 11:18

    Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.1 ships with an Oracle database that contains several default accounts and passwords, which allows attackers to obtain sensitive information. A buffer overflow exists in the Snort Back Orifice preprocessor that may allow a remote, unauthenticated attacker to execute arbitrary code, possibly with elevated privileges. This may facilitate a remote compromise of affected computers. Cisco has released version 4.2.1 to address these issues; prior versions are reported vulnerable. Snort is susceptible to a remote buffer overflow vulnerability. This issue is due to a failure of the application to securely copy network-derived data into sensitive process buffers. The specific issue exists in the Back Orifice preprocessor. This may facilitate unauthorized access or privilege escalation. Due to the nature of this issue, attackers may exploit it by sending a single UDP packet with a potentially spoofed source address to an arbitrary destination address and port. As long as the application can sniff the packet, it may be exploited. These aspects of this issue may aid attackers in bypassing firewalls in order to compromise a wider number of computers. Reportedly, this issue is difficult to reliably exploit across differing operating systems and compiler versions. Failed exploit attempts likely result in crashing the application, thereby disabling detection of other attacks. Snort versions 2.4.0 through 2.4.2 are affected by this issue. Other versions may also be affected, but this has not been confirmed. CS-MARS uses an Oracle database to store sensitive network events and configuration data. Information in the database may include authentication credentials for network devices, such as firewalls, routers and IPS devices, and details of network security events. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

                     National Cyber Alert System
    
               Technical Cyber Security Alert TA05-291A
    

    Snort Back Orifice Preprocessor Buffer Overflow

    Original release date: October 18, 2005 Last revised: -- Source: US-CERT

    Systems Affected

     * Snort versions 2.4.0 to 2.4.2
     * Sourcefire Intrusion Sensors
    

    Other products that use Snort or Snort components may be affected.

    I. Description

    Snort is a widely-deployed, open-source network intrusion detection system (IDS). Snort and its components are used in other IDS products, notably Sourcefire Intrusion Sensors, and Snort is included with a number of operating system distributions.

    Snort preprocessors are modular plugins that extend functionality by operating on packets before the detection engine is run. The ping detection code does not adequately limit the amount of data that is read from the packet into a fixed-length buffer, thus creating the potential for a buffer overflow.

    The vulnerable code will process any UDP packet that is not destined to or sourced from the default Back Orifice port (31337/udp). An attacker could exploit this vulnerability by sending a specially crafted UDP packet to a host or network monitored by Snort.

    US-CERT is tracking this vulnerability as VU#175500. Further information is available in an advisory from Internet Security Systems (ISS).

    II. Snort typically runs with root or SYSTEM privileges, so an attacker could take complete control of a vulnerable system. An attacker does not need to target a Snort sensor directly; the attacker can target any host or network monitored by Snort.

    III. Solution

    Upgrade

    Sourcefire has released Snort 2.4.3 which is available from the Snort download site. For information about other vendors, please see the Systems Affected section of VU#175500.

    Disable Back Orifice Preprocessor

    To disable the Back Orifice preprocessor, comment out the line that loads the preprocessor in the Snort configuration file (typically /etc/snort.conf on UNIX and Linux systems):

     [/etc/snort.conf]
     ... 
     #preprocessor bo
     ...
    

    Restart Snort for the change to take effect.

    Restrict Outbound Traffic

    Consider preventing Snort sensors from initiating outbound connections and restricting outbound traffic to only those hosts and networks that have legitimate requirements to communicate with the sensors. While this will not prevent exploitation of the vulnerability, it may make it more difficult for an attacker to access a compromised system or reconnoiter other systems.

    Appendix A. References

     * US-CERT Vulnerability Note VU#175500 -
       <http://www.kb.cert.org/vuls/id/177500>
    
     * Fixes and Mitigation Instructions Available for Snort Back
       Orifice Vulnerability -
       <http://www.snort.org/pub-bin/snortnews.cgi#99>
    
     * Snort downloads - <http://www.snort.org/dl/>
    
     * Snort 2.4.3 Changelog -
       <http://www.snort.org/docs/change_logs/2.4.3/Changelog.txt>
    
     * Preprocessors -
       <http://www.snort.org/docs/snort_htmanuals/htmanual_2.4/
       node11.html#SECTION00310000000000000000>
    
     * Snort Back Orifice Parsing Remote Code Execution -
       <http://xforce.iss.net/xforce/alerts/id/207>
    

    This vulnerability was researched and reported by Internet Security Systems (ISS).


    The most recent version of this document can be found at:

     <http://www.us-cert.gov/cas/techalerts/TA05-291A.html>
    

    Feedback can be directed to US-CERT Technical Staff. Please send email to cert@cert.org with "TA05-291A Feedback VU#175500" in the subject.


    For instructions on subscribing to or unsubscribing from this mailing list, visit http://www.us-cert.gov/cas/signup.html.


    Produced 2005 by US-CERT, a government organization.

    Terms of use:

     <http://www.us-cert.gov/legal.html>
    

    Revision History

    Oct 18, 2005: Initial release

    -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux)

    iQEVAwUBQ1VB130pj593lg50AQLY6wf+Kq/rI3wxG4rGr+OdVrpl3v+TfTMp6MX3 T0e99ybRSGKeWQCleMQYdBYrS+7UyCa28T1yE8ENe4SuYLPj7ttTqpd0AGxn7f8H +qOY0GnJwXvrWlKCfVtAhjo5JFDxgZQV9P/13MwjcsJrGTtHzhuJ8YZc4RtSMyVX 4nf2s4Nymjd2+jIEX9BnwRIe/E47TRdFLSsza36mhKZLZV1lxLdJYywCZSsQLWNM nL9gohRojR/6wQk8sLjef8LCv2JFu3btsqrrblcTWqfB6GhVR9OSUBhL+b8P/mme jVd9eE0OS5v8rzhaEMiYIMI+pEZEpATj4BnVoLwPkLAoD6ObGJKHkQ== =jjID -----END PGP SIGNATURE----- .


    Hardcore Disassembler / Reverse Engineer Wanted!

    Want to work with IDA and BinDiff? Want to write PoC's and Exploits?

    Your nationality is not important. We will get you a work permit, find an apartment, and offer a relocation compensation package.

    http://secunia.com/hardcore_disassembler_and_reverse_engineer/


    TITLE: CS-MARS Multiple Vulnerabilities

    SECUNIA ADVISORY ID: SA21118

    VERIFY ADVISORY: http://secunia.com/advisories/21118/

    CRITICAL: Moderately critical

    IMPACT: Security Bypass, Exposure of system information, System access

    WHERE:

    From local network

    OPERATING SYSTEM: Cisco Security Monitoring, Analysis and Response System (CS-MARS) 4.x http://secunia.com/product/6780/

    DESCRIPTION: Multiple vulnerabilities have been reported in CS-MARS, which can be exploited by malicious, local users to bypass certain security restrictions and malicious people to gain knowledge of system information and compromise a vulnerable system.

    2) The included JBoss web application server is also affected by an information disclosure weakness.

    SOLUTION: Update to version 4.2.1 or later.

    PROVIDED AND/OR DISCOVERED BY: 1+2) Jon Hart 3) Reported by the vendor.

    ORIGINAL ADVISORY: http://www.cisco.com/warp/public/707/cisco-sa-20060719-mars.shtml

    OTHER REFERENCES: SA15746: http://secunia.com/advisories/15746/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    .

    The vulnerability is caused due to a boundary error in the handling of Back Orifice packets.

    Alternatively, disable the Back Orifice pre-processor

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-200607-0504",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "cs-mars",
            "scope": "eq",
            "trust": 2.2,
            "vendor": "cisco",
            "version": "4.1.5"
          },
          {
            "model": "cs-mars",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "cisco",
            "version": "4.1"
          },
          {
            "model": "cs-mars",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "cisco",
            "version": "4.1.3"
          },
          {
            "model": "cs-mars",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "cisco",
            "version": "4.1.2"
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "freebsd",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "suse linux",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "snort",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sourcefire",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ubuntu",
            "version": null
          },
          {
            "model": "security monitoring, analysis and response system",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "4.2.1"
          },
          {
            "model": "networks contivity vpn switch",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "nortel",
            "version": "20004.1.3"
          },
          {
            "model": "networks contivity vpn switch",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "nortel",
            "version": "20004.1.2"
          },
          {
            "model": "networks contivity vpn switch",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "nortel",
            "version": "20004.1"
          },
          {
            "model": "cs-mars",
            "scope": "ne",
            "trust": 0.6,
            "vendor": "cisco",
            "version": "4.2.1"
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "2.4.2"
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "2.4.1"
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "2.4.0"
          },
          {
            "model": "networks threat protection system intrusion sensor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "4.1"
          },
          {
            "model": "networks threat protection system defense center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "4.1"
          },
          {
            "model": "project snort",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "snort",
            "version": "2.4.3"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "db": "BID",
            "id": "19073"
          },
          {
            "db": "BID",
            "id": "19071"
          },
          {
            "db": "BID",
            "id": "15131"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002835"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-3732"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-315"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:cs-mars:4.1.3:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:cs-mars:4.1.5:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:cs-mars:4.1:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:cs-mars:4.1.2:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-3732"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Cisco Security bulletin",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-315"
          }
        ],
        "trust": 0.6
      },
      "cve": "CVE-2006-3732",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "Low",
                "accessVector": "Network",
                "authentication": "None",
                "author": "NVD",
                "availabilityImpact": "None",
                "baseScore": 5.0,
                "confidentialityImpact": "Partial",
                "exploitabilityScore": null,
                "id": "CVE-2006-3732",
                "impactScore": null,
                "integrityImpact": "None",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "Medium",
                "trust": 0.8,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "VHN-19840",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:P/I:N/A:N",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2006-3732",
                "trust": 1.8,
                "value": "MEDIUM"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#175500",
                "trust": 0.8,
                "value": "31.05"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200607-315",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-19840",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "db": "VULHUB",
            "id": "VHN-19840"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002835"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-3732"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-315"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.1 ships with an Oracle database that contains several default accounts and passwords, which allows attackers to obtain sensitive information. A buffer overflow exists in the Snort Back Orifice preprocessor that may allow a remote, unauthenticated attacker to execute arbitrary code, possibly with elevated privileges. This may facilitate a remote compromise of affected computers. \nCisco has released version 4.2.1 to address these issues; prior versions are reported vulnerable. Snort is susceptible to a remote buffer overflow vulnerability. This issue is due to a failure of the application to securely copy network-derived data into sensitive process buffers. The specific issue exists in the Back Orifice preprocessor. This may facilitate unauthorized access or privilege escalation. \nDue to the nature of this issue, attackers may exploit it by sending a single UDP packet with a potentially spoofed source address to an arbitrary destination address and port. As long as the application can sniff the packet, it may be exploited. These aspects of this issue may aid attackers in bypassing firewalls in order to compromise a wider number of computers. \nReportedly, this issue is difficult to reliably exploit across differing operating systems and compiler versions. Failed exploit attempts likely result in crashing the application, thereby disabling detection of other attacks. \nSnort versions 2.4.0 through 2.4.2 are affected by this issue. Other versions may also be affected, but this has not been confirmed. CS-MARS uses an Oracle database to store sensitive network events and configuration data. Information in the database may include authentication credentials for network devices, such as firewalls, routers and IPS devices, and details of network security events. \n-----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n\n                     National Cyber Alert System\n\n               Technical Cyber Security Alert TA05-291A\n\n\nSnort Back Orifice Preprocessor Buffer Overflow\n\n   Original release date: October 18, 2005\n   Last revised: --\n   Source: US-CERT\n\n\nSystems Affected\n\n     * Snort versions 2.4.0 to 2.4.2\n     * Sourcefire Intrusion Sensors\n\n   Other products that use Snort or Snort components may be affected. \n\n\nI. Description\n\n   Snort is a widely-deployed, open-source network intrusion detection\n   system (IDS). Snort and its components are used in other IDS\n   products, notably Sourcefire Intrusion Sensors, and Snort is\n   included with a number of operating system distributions. \n\n   Snort preprocessors are modular plugins that extend functionality\n   by operating on packets before the detection engine is run. The ping detection code does\n   not adequately limit the amount of data that is read from the\n   packet into a fixed-length buffer, thus creating the potential for\n   a buffer overflow. \n\n   The vulnerable code will process any UDP packet that is not\n   destined to or sourced from the default Back Orifice port\n   (31337/udp). An attacker could exploit this vulnerability by\n   sending a specially crafted UDP packet to a host or network\n   monitored by Snort. \n\n   US-CERT is tracking this vulnerability as VU#175500. Further\n   information is available in an advisory from Internet Security\n   Systems (ISS). \n\n\nII. Snort typically runs with root or\n   SYSTEM privileges, so an attacker could take complete control of a\n   vulnerable system. An attacker does not need to target a Snort\n   sensor directly; the attacker can target any host or network\n   monitored by Snort. \n\n\nIII. Solution\n\nUpgrade\n\n   Sourcefire has released Snort 2.4.3 which is available from the\n   Snort download site. For information about other vendors, please\n   see the Systems Affected section of VU#175500. \n\nDisable Back Orifice Preprocessor\n\n   To disable the Back Orifice preprocessor, comment out the line that\n   loads the preprocessor in the Snort configuration file (typically\n   /etc/snort.conf on UNIX and Linux systems):\n\n     [/etc/snort.conf]\n     ... \n     #preprocessor bo\n     ... \n   \n   Restart Snort for the change to take effect. \n\nRestrict Outbound Traffic\n\n   Consider preventing Snort sensors from initiating outbound\n   connections and restricting outbound traffic to only those hosts\n   and networks that have legitimate requirements to communicate with\n   the sensors. While this will not prevent exploitation of the\n   vulnerability, it may make it more difficult for an attacker to\n   access a compromised system or reconnoiter other systems. \n\n\nAppendix A. References\n\n     * US-CERT Vulnerability Note VU#175500 -\n       \u003chttp://www.kb.cert.org/vuls/id/177500\u003e\n\n     * Fixes and Mitigation Instructions Available for Snort Back\n       Orifice Vulnerability -\n       \u003chttp://www.snort.org/pub-bin/snortnews.cgi#99\u003e\n\n     * Snort downloads - \u003chttp://www.snort.org/dl/\u003e\n\n     * Snort 2.4.3 Changelog -\n       \u003chttp://www.snort.org/docs/change_logs/2.4.3/Changelog.txt\u003e\n\n     * Preprocessors -\n       \u003chttp://www.snort.org/docs/snort_htmanuals/htmanual_2.4/\n       node11.html#SECTION00310000000000000000\u003e\n\n     * Snort Back Orifice Parsing Remote Code Execution -\n       \u003chttp://xforce.iss.net/xforce/alerts/id/207\u003e\n\n\n ____________________________________________________________________\n\n   This vulnerability was researched and reported by Internet Security\n   Systems (ISS). \n ____________________________________________________________________\n\n   The most recent version of this document can be found at:\n\n     \u003chttp://www.us-cert.gov/cas/techalerts/TA05-291A.html\u003e\n ____________________________________________________________________\n\n   Feedback can be directed to US-CERT Technical Staff. Please send\n   email to \u003ccert@cert.org\u003e with \"TA05-291A Feedback VU#175500\" in the\n   subject. \n ____________________________________________________________________\n\n   For instructions on subscribing to or unsubscribing from this\n   mailing list, visit \u003chttp://www.us-cert.gov/cas/signup.html\u003e. \n ____________________________________________________________________\n\n   Produced 2005 by US-CERT, a government organization. \n\n   Terms of use:\n\n     \u003chttp://www.us-cert.gov/legal.html\u003e\n ____________________________________________________________________\n\n\nRevision History\n\n   Oct 18, 2005: Initial release\n\n\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.2.1 (GNU/Linux)\n\niQEVAwUBQ1VB130pj593lg50AQLY6wf+Kq/rI3wxG4rGr+OdVrpl3v+TfTMp6MX3\nT0e99ybRSGKeWQCleMQYdBYrS+7UyCa28T1yE8ENe4SuYLPj7ttTqpd0AGxn7f8H\n+qOY0GnJwXvrWlKCfVtAhjo5JFDxgZQV9P/13MwjcsJrGTtHzhuJ8YZc4RtSMyVX\n4nf2s4Nymjd2+jIEX9BnwRIe/E47TRdFLSsza36mhKZLZV1lxLdJYywCZSsQLWNM\nnL9gohRojR/6wQk8sLjef8LCv2JFu3btsqrrblcTWqfB6GhVR9OSUBhL+b8P/mme\njVd9eE0OS5v8rzhaEMiYIMI+pEZEpATj4BnVoLwPkLAoD6ObGJKHkQ==\n=jjID\n-----END PGP SIGNATURE-----\n. \n\n----------------------------------------------------------------------\n\nHardcore Disassembler / Reverse Engineer Wanted!\n\nWant to work with IDA and BinDiff?\nWant to write PoC\u0027s and Exploits?\n\nYour nationality is not important. \nWe will get you a work permit, find an apartment, and offer a\nrelocation compensation package. \n\nhttp://secunia.com/hardcore_disassembler_and_reverse_engineer/\n\n----------------------------------------------------------------------\n\nTITLE:\nCS-MARS Multiple Vulnerabilities\n\nSECUNIA ADVISORY ID:\nSA21118\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/21118/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nSecurity Bypass, Exposure of system information, System access\n\nWHERE:\n\u003eFrom local network\n\nOPERATING SYSTEM:\nCisco Security Monitoring, Analysis and Response System (CS-MARS) 4.x\nhttp://secunia.com/product/6780/\n\nDESCRIPTION:\nMultiple vulnerabilities have been reported in CS-MARS, which can be\nexploited by malicious, local users to bypass certain security\nrestrictions and malicious people to gain knowledge of system\ninformation and compromise a vulnerable system. \n\n2) The included JBoss web application server is also affected by an\ninformation disclosure weakness. \n\nSOLUTION:\nUpdate to version 4.2.1 or later. \n\nPROVIDED AND/OR DISCOVERED BY:\n1+2) Jon Hart\n3) Reported by the vendor. \n\nORIGINAL ADVISORY:\nhttp://www.cisco.com/warp/public/707/cisco-sa-20060719-mars.shtml\n\nOTHER REFERENCES:\nSA15746:\nhttp://secunia.com/advisories/15746/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n. \n\nThe vulnerability is caused due to a boundary error in the handling\nof Back Orifice packets. \n\nAlternatively, disable the Back Orifice pre-processor",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-3732"
          },
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002835"
          },
          {
            "db": "BID",
            "id": "19073"
          },
          {
            "db": "BID",
            "id": "19071"
          },
          {
            "db": "BID",
            "id": "15131"
          },
          {
            "db": "VULHUB",
            "id": "VHN-19840"
          },
          {
            "db": "PACKETSTORM",
            "id": "40869"
          },
          {
            "db": "PACKETSTORM",
            "id": "48383"
          },
          {
            "db": "PACKETSTORM",
            "id": "40766"
          }
        ],
        "trust": 3.51
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2006-3732",
            "trust": 2.5
          },
          {
            "db": "BID",
            "id": "19071",
            "trust": 2.0
          },
          {
            "db": "BID",
            "id": "19073",
            "trust": 2.0
          },
          {
            "db": "SECUNIA",
            "id": "21118",
            "trust": 1.8
          },
          {
            "db": "SECTRACK",
            "id": "1016537",
            "trust": 1.7
          },
          {
            "db": "VUPEN",
            "id": "ADV-2006-2887",
            "trust": 1.7
          },
          {
            "db": "CERT/CC",
            "id": "VU#175500",
            "trust": 1.2
          },
          {
            "db": "SECUNIA",
            "id": "17220",
            "trust": 1.0
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002835",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-315",
            "trust": 0.7
          },
          {
            "db": "CISCO",
            "id": "20060719 MULTIPLE VULNERABILITIES IN CISCO SECURITY MONITORING, ANALYSIS AND RESPONSE SYSTEM (CS-MARS)",
            "trust": 0.6
          },
          {
            "db": "XF",
            "id": "27810",
            "trust": 0.6
          },
          {
            "db": "USCERT",
            "id": "TA05-291A",
            "trust": 0.4
          },
          {
            "db": "BID",
            "id": "15131",
            "trust": 0.3
          },
          {
            "db": "VULHUB",
            "id": "VHN-19840",
            "trust": 0.1
          },
          {
            "db": "CERT/CC",
            "id": "VU#177500",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "40869",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "48383",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "40766",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "db": "VULHUB",
            "id": "VHN-19840"
          },
          {
            "db": "BID",
            "id": "19073"
          },
          {
            "db": "BID",
            "id": "19071"
          },
          {
            "db": "BID",
            "id": "15131"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002835"
          },
          {
            "db": "PACKETSTORM",
            "id": "40869"
          },
          {
            "db": "PACKETSTORM",
            "id": "48383"
          },
          {
            "db": "PACKETSTORM",
            "id": "40766"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-3732"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-315"
          }
        ]
      },
      "id": "VAR-200607-0504",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-19840"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2023-12-18T11:18:53.694000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "cisco-sa-20060719-mars",
            "trust": 0.8,
            "url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20060719-mars"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002835"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-3732"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.4,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20060719-mars.shtml"
          },
          {
            "trust": 1.7,
            "url": "http://www.securityfocus.com/bid/19071"
          },
          {
            "trust": 1.7,
            "url": "http://www.securityfocus.com/bid/19073"
          },
          {
            "trust": 1.7,
            "url": "http://securitytracker.com/id?1016537"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/21118"
          },
          {
            "trust": 1.2,
            "url": "http://xforce.iss.net/xforce/alerts/id/207"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2006/2887"
          },
          {
            "trust": 1.1,
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27810"
          },
          {
            "trust": 0.9,
            "url": "http://www.snort.org/pub-bin/snortnews.cgi#99"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17220/"
          },
          {
            "trust": 0.8,
            "url": "http://www.snort.org/docs/change_logs/2.4.3/changelog.txt"
          },
          {
            "trust": 0.8,
            "url": "http://www.snort.org/docs/snort_htmanuals/htmanual_2.4/node11.html#section00310000000000000000"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-3732"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2006-3732"
          },
          {
            "trust": 0.6,
            "url": "http://www.cisco.com/en/us/products/sw/voicesw/ps4625/index.html"
          },
          {
            "trust": 0.6,
            "url": "http://www.cisco.com/en/us/products/ps6241/index.html"
          },
          {
            "trust": 0.6,
            "url": "/archive/1/440580"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2006/2887"
          },
          {
            "trust": 0.6,
            "url": "http://xforce.iss.net/xforce/xfdb/27810"
          },
          {
            "trust": 0.4,
            "url": "http://www.kb.cert.org/vuls/id/175500"
          },
          {
            "trust": 0.3,
            "url": "http://www.snort.org/rules/advisories/snort_update_20051018.html"
          },
          {
            "trust": 0.3,
            "url": "http://www.snort.org/"
          },
          {
            "trust": 0.3,
            "url": "http://www.snort.org/pub-bin/snortnews.cgi"
          },
          {
            "trust": 0.3,
            "url": "http://www.us-cert.gov/cas/techalerts/ta05-291a.html"
          },
          {
            "trust": 0.3,
            "url": "http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=bltndetail\u0026documentoid=362187\u0026renditionid="
          },
          {
            "trust": 0.2,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.2,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.2,
            "url": "http://secunia.com/about_secunia_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://xforce.iss.net/xforce/alerts/id/207\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.snort.org/docs/snort_htmanuals/htmanual_2.4/"
          },
          {
            "trust": 0.1,
            "url": "http://www.us-cert.gov/cas/techalerts/ta05-291a.html\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.snort.org/docs/change_logs/2.4.3/changelog.txt\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.snort.org/dl/\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.us-cert.gov/cas/signup.html\u003e."
          },
          {
            "trust": 0.1,
            "url": "http://www.us-cert.gov/legal.html\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.snort.org/pub-bin/snortnews.cgi#99\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.kb.cert.org/vuls/id/177500\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6780/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/15746/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/hardcore_disassembler_and_reverse_engineer/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/21118/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/5691/"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "db": "VULHUB",
            "id": "VHN-19840"
          },
          {
            "db": "BID",
            "id": "19073"
          },
          {
            "db": "BID",
            "id": "19071"
          },
          {
            "db": "BID",
            "id": "15131"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002835"
          },
          {
            "db": "PACKETSTORM",
            "id": "40869"
          },
          {
            "db": "PACKETSTORM",
            "id": "48383"
          },
          {
            "db": "PACKETSTORM",
            "id": "40766"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-3732"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-315"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "db": "VULHUB",
            "id": "VHN-19840"
          },
          {
            "db": "BID",
            "id": "19073"
          },
          {
            "db": "BID",
            "id": "19071"
          },
          {
            "db": "BID",
            "id": "15131"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002835"
          },
          {
            "db": "PACKETSTORM",
            "id": "40869"
          },
          {
            "db": "PACKETSTORM",
            "id": "48383"
          },
          {
            "db": "PACKETSTORM",
            "id": "40766"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-3732"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-315"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2005-10-18T00:00:00",
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "date": "2006-07-21T00:00:00",
            "db": "VULHUB",
            "id": "VHN-19840"
          },
          {
            "date": "2006-07-19T00:00:00",
            "db": "BID",
            "id": "19073"
          },
          {
            "date": "2006-07-19T00:00:00",
            "db": "BID",
            "id": "19071"
          },
          {
            "date": "2005-10-18T00:00:00",
            "db": "BID",
            "id": "15131"
          },
          {
            "date": "2012-12-20T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2006-002835"
          },
          {
            "date": "2005-10-24T23:41:37",
            "db": "PACKETSTORM",
            "id": "40869"
          },
          {
            "date": "2006-07-20T08:48:26",
            "db": "PACKETSTORM",
            "id": "48383"
          },
          {
            "date": "2005-10-18T22:10:31",
            "db": "PACKETSTORM",
            "id": "40766"
          },
          {
            "date": "2006-07-21T14:03:00",
            "db": "NVD",
            "id": "CVE-2006-3732"
          },
          {
            "date": "2006-07-21T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200607-315"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2005-11-11T00:00:00",
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "date": "2017-07-20T00:00:00",
            "db": "VULHUB",
            "id": "VHN-19840"
          },
          {
            "date": "2006-07-20T18:28:00",
            "db": "BID",
            "id": "19073"
          },
          {
            "date": "2006-07-20T18:52:00",
            "db": "BID",
            "id": "19071"
          },
          {
            "date": "2005-10-18T00:00:00",
            "db": "BID",
            "id": "15131"
          },
          {
            "date": "2012-12-20T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2006-002835"
          },
          {
            "date": "2017-07-20T01:32:32.087000",
            "db": "NVD",
            "id": "CVE-2006-3732"
          },
          {
            "date": "2006-08-09T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200607-315"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "40869"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-315"
          }
        ],
        "trust": 0.7
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Snort Back Orifice preprocessor buffer overflow",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Access Validation Error",
        "sources": [
          {
            "db": "BID",
            "id": "19073"
          },
          {
            "db": "BID",
            "id": "19071"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202110-1352

    Vulnerability from variot - Updated: 2023-12-18 11:16

    Multiple Cisco products are affected by a vulnerability in Snort rules that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.The vulnerability is due to improper handling of the Block with Reset or Interactive Block with Reset actions if a rule is configured without proper constraints. An attacker could exploit this vulnerability by sending a crafted IP packet to the affected device. A successful exploit could allow the attacker to cause through traffic to be dropped. Note: Only products with Snort3 configured and either a rule with Block with Reset or Interactive Block with Reset actions configured are vulnerable. Products configured with Snort2 are not vulnerable. plural Cisco products and Snort Exists in unspecified vulnerabilities.Service operation interruption (DoS) It may be in a state

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202110-1352",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "firepower threat defense",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.6.5.1"
          },
          {
            "model": "firepower management center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.1.0.1"
          },
          {
            "model": "firepower threat defense",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.7.0.3"
          },
          {
            "model": "snort",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "snort",
            "version": "3.0.0.0"
          },
          {
            "model": "firepower threat defense",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.6.0"
          },
          {
            "model": "firepower threat defense",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.0.0"
          },
          {
            "model": "firepower threat defense",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.7.0"
          },
          {
            "model": "snort",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "snort",
            "version": "3.1.0.100"
          },
          {
            "model": "firepower threat defense",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.0.1"
          },
          {
            "model": "firepower threat defense",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.4.0.13"
          },
          {
            "model": "firepower threat defense",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.4.0"
          },
          {
            "model": "cisco firepower threat defense \u30bd\u30d5\u30c8\u30a6\u30a7\u30a2",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          },
          {
            "model": "cisco firepower management center",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          },
          {
            "model": "snort",
            "scope": null,
            "trust": 0.8,
            "vendor": "snort",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-014297"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-40116"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "7.0.1",
                    "versionStartIncluding": "7.0.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "6.7.0.3",
                    "versionStartIncluding": "6.7.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "6.6.5.1",
                    "versionStartIncluding": "6.6.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "6.4.0.13",
                    "versionStartIncluding": "6.4.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:3.1.0.1:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "3.1.0.100",
                    "versionStartIncluding": "3.0.0.0",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-40116"
          }
        ]
      },
      "cve": "CVE-2021-40116",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.1,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 8.6,
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "HIGH",
                "trust": 1.0,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "Medium",
                "accessVector": "Network",
                "authentication": "None",
                "author": "NVD",
                "availabilityImpact": "Complete",
                "baseScore": 7.1,
                "confidentialityImpact": "None",
                "exploitabilityScore": null,
                "id": "CVE-2021-40116",
                "impactScore": null,
                "integrityImpact": "None",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "High",
                "trust": 0.9,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.1,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 8.6,
                "id": "VHN-401509",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:N/I:N/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "NVD",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 3.9,
                "impactScore": 3.6,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "ykramarz@cisco.com",
                "availabilityImpact": "HIGH",
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 3.9,
                "impactScore": 4.0,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Network",
                "author": "NVD",
                "availabilityImpact": "High",
                "baseScore": 7.5,
                "baseSeverity": "High",
                "confidentialityImpact": "None",
                "exploitabilityScore": null,
                "id": "CVE-2021-40116",
                "impactScore": null,
                "integrityImpact": "None",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "None",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2021-40116",
                "trust": 1.8,
                "value": "HIGH"
              },
              {
                "author": "ykramarz@cisco.com",
                "id": "CVE-2021-40116",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202110-1965",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-401509",
                "trust": 0.1,
                "value": "HIGH"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-40116",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-401509"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-40116"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-014297"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-40116"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-40116"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202110-1965"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple Cisco products are affected by a vulnerability in Snort rules that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.The vulnerability is due to improper handling of the Block with Reset or Interactive Block with Reset actions if a rule is configured without proper constraints. An attacker could exploit this vulnerability by sending a crafted IP packet to the affected device. A successful exploit could allow the attacker to cause through traffic to be dropped. Note: Only products with Snort3 configured and either a rule with Block with Reset or Interactive Block with Reset actions configured are vulnerable. Products configured with Snort2 are not vulnerable. plural Cisco products and Snort Exists in unspecified vulnerabilities.Service operation interruption (DoS) It may be in a state",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-40116"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-014297"
          },
          {
            "db": "VULHUB",
            "id": "VHN-401509"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-40116"
          }
        ],
        "trust": 1.8
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-40116",
            "trust": 3.4
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-014297",
            "trust": 0.8
          },
          {
            "db": "CS-HELP",
            "id": "SB2021102918",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.3600",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202110-1965",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-401509",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-40116",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-401509"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-40116"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-014297"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-40116"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202110-1965"
          }
        ]
      },
      "id": "VAR-202110-1352",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-401509"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2023-12-18T11:16:20.721000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Top\u00a0Page Cisco Systems Cisco\u00a0Security\u00a0Advisory",
            "trust": 0.8,
            "url": "https://www.snort.org/"
          },
          {
            "title": "Cisco Products Snort Security vulnerabilities",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=167516"
          },
          {
            "title": "Cisco: Multiple Cisco Products Snort Rule Denial of Service Vulnerability",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts\u0026qid=cisco-sa-snort-dos-rywh7ezm"
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2021-40116"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-014297"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202110-1965"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-noinfo",
            "trust": 1.0
          },
          {
            "problemtype": "Lack of information (CWE-noinfo) [NVD evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-014297"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-40116"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.5,
            "url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-snort-dos-rywh7ezm"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-40116"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.3600"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021102918"
          },
          {
            "trust": 0.6,
            "url": "https://vigilance.fr/vulnerability/snort-denial-of-service-via-block-with-reset-36734"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-401509"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-40116"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-014297"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-40116"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202110-1965"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-401509"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-40116"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-014297"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-40116"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202110-1965"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-10-27T00:00:00",
            "db": "VULHUB",
            "id": "VHN-401509"
          },
          {
            "date": "2021-10-27T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-40116"
          },
          {
            "date": "2022-10-12T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-014297"
          },
          {
            "date": "2021-10-27T19:15:08.717000",
            "db": "NVD",
            "id": "CVE-2021-40116"
          },
          {
            "date": "2021-10-27T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202110-1965"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-10-29T00:00:00",
            "db": "VULHUB",
            "id": "VHN-401509"
          },
          {
            "date": "2021-10-29T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-40116"
          },
          {
            "date": "2022-10-12T07:17:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-014297"
          },
          {
            "date": "2023-11-07T03:38:28.713000",
            "db": "NVD",
            "id": "CVE-2021-40116"
          },
          {
            "date": "2021-11-08T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202110-1965"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202110-1965"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "plural \u00a0Cisco\u00a0 products and \u00a0Snort\u00a0 Vulnerability in",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-014297"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202110-1965"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200602-0404

    Vulnerability from variot - Updated: 2023-12-18 11:12

    The frag3 preprocessor in Sourcefire Snort 2.4.3 does not properly reassemble certain fragmented packets with IP options, which allows remote attackers to evade detection of certain attacks, possibly related to IP option lengths. Snort is reportedly prone to a vulnerability that may allow malicious packets to bypass detection. Reports indicate that the Frag3 preprocessor fails to properly analyze certain packets. A successful attack can allow attackers to bypass intrusion detection and to carry out attacks against computers protected by Snort. This vulnerability affects Snort 2.4.3. Other versions may be vulnerable as well.

    TITLE: Snort frag3 Preprocessor Packet Reassembly Vulnerability

    SECUNIA ADVISORY ID: SA18959

    VERIFY ADVISORY: http://secunia.com/advisories/18959/

    CRITICAL: Moderately critical

    IMPACT: Security Bypass

    WHERE:

    From remote

    SOFTWARE: Snort 2.4.x http://secunia.com/product/5691/

    DESCRIPTION: siouxsie has reported a vulnerability in Snort, which potentially can be exploited by malicious people to bypass certain security restrictions.

    The vulnerability has been reported in version 2.4.3.

    SOLUTION: Filter potentially malicious fragmented IP packets with a firewall.

    PROVIDED AND/OR DISCOVERED BY: siouxsie


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-200602-0404",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "snort",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "sourcefire",
            "version": "2.4.3"
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.6,
            "vendor": "no",
            "version": null
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "2.4.3"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2006-0996"
          },
          {
            "db": "BID",
            "id": "16705"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-0839"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200602-339"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:sourcefire:snort:2.4.3:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-0839"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Reported by",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200602-339"
          }
        ],
        "trust": 0.6
      },
      "cve": "CVE-2006-0839",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "impactScore": 2.9,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "CNVD",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CNVD-2006-0996",
                "impactScore": 2.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.6,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2006-0839",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "CNVD",
                "id": "CNVD-2006-0996",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200602-339",
                "trust": 0.6,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2006-0996"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-0839"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200602-339"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The frag3 preprocessor in Sourcefire Snort 2.4.3 does not properly reassemble certain fragmented packets with IP options, which allows remote attackers to evade detection of certain attacks, possibly related to IP option lengths. Snort is reportedly prone to a vulnerability that may allow malicious packets to bypass detection. \nReports indicate that the Frag3 preprocessor fails to properly analyze certain packets. \nA successful attack can allow attackers to bypass intrusion detection and to carry out attacks against computers protected by Snort. \nThis vulnerability affects Snort 2.4.3. Other versions may be vulnerable as well. \n\nTITLE:\nSnort frag3 Preprocessor Packet Reassembly Vulnerability\n\nSECUNIA ADVISORY ID:\nSA18959\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/18959/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nSecurity Bypass\n\nWHERE:\n\u003eFrom remote\n\nSOFTWARE:\nSnort 2.4.x\nhttp://secunia.com/product/5691/\n\nDESCRIPTION:\nsiouxsie has reported a vulnerability in Snort, which potentially can\nbe exploited by malicious people to bypass certain security\nrestrictions. \n\nThe vulnerability has been reported in version 2.4.3. \n\nSOLUTION:\nFilter potentially malicious fragmented IP packets with a firewall. \n\nPROVIDED AND/OR DISCOVERED BY:\nsiouxsie\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-0839"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2006-0996"
          },
          {
            "db": "BID",
            "id": "16705"
          },
          {
            "db": "PACKETSTORM",
            "id": "44230"
          }
        ],
        "trust": 1.8
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "BID",
            "id": "16705",
            "trust": 2.5
          },
          {
            "db": "NVD",
            "id": "CVE-2006-0839",
            "trust": 2.2
          },
          {
            "db": "SECUNIA",
            "id": "18959",
            "trust": 1.7
          },
          {
            "db": "CNVD",
            "id": "CNVD-2006-0996",
            "trust": 0.6
          },
          {
            "db": "XF",
            "id": "3",
            "trust": 0.6
          },
          {
            "db": "XF",
            "id": "24811",
            "trust": 0.6
          },
          {
            "db": "BUGTRAQ",
            "id": "20060217 SNORT INCORRECT FRAGMENTED PACKET REASSEMBLY",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200602-339",
            "trust": 0.6
          },
          {
            "db": "PACKETSTORM",
            "id": "44230",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2006-0996"
          },
          {
            "db": "BID",
            "id": "16705"
          },
          {
            "db": "PACKETSTORM",
            "id": "44230"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-0839"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200602-339"
          }
        ]
      },
      "id": "VAR-200602-0404",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2006-0996"
          }
        ],
        "trust": 0.06
      },
      "iot_taxonomy": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "category": [
              "Network device"
            ],
            "sub_category": null,
            "trust": 0.6
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2006-0996"
          }
        ]
      },
      "last_update_date": "2023-12-18T11:12:52.992000Z",
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-0839"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.2,
            "url": "http://www.securityfocus.com/bid/16705"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/18959"
          },
          {
            "trust": 1.0,
            "url": "http://www.securityfocus.com/archive/1/425290/100/0/threaded"
          },
          {
            "trust": 1.0,
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24811"
          },
          {
            "trust": 0.6,
            "url": "http://www.securityfocus.com/archive/1/archive/1/425290/100/0/threaded"
          },
          {
            "trust": 0.6,
            "url": "http://xforce.iss.net/xforce/xfdb/24811"
          },
          {
            "trust": 0.3,
            "url": "http://www.snort.org/"
          },
          {
            "trust": 0.3,
            "url": "/archive/1/425290"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/5691/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/18959/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/about_secunia_advisories/"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2006-0996"
          },
          {
            "db": "BID",
            "id": "16705"
          },
          {
            "db": "PACKETSTORM",
            "id": "44230"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-0839"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200602-339"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CNVD",
            "id": "CNVD-2006-0996"
          },
          {
            "db": "BID",
            "id": "16705"
          },
          {
            "db": "PACKETSTORM",
            "id": "44230"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-0839"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200602-339"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2006-02-21T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2006-0996"
          },
          {
            "date": "2006-02-17T00:00:00",
            "db": "BID",
            "id": "16705"
          },
          {
            "date": "2006-03-01T03:50:51",
            "db": "PACKETSTORM",
            "id": "44230"
          },
          {
            "date": "2006-02-22T02:02:00",
            "db": "NVD",
            "id": "CVE-2006-0839"
          },
          {
            "date": "2006-02-21T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200602-339"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2006-02-21T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2006-0996"
          },
          {
            "date": "2006-02-17T18:43:00",
            "db": "BID",
            "id": "16705"
          },
          {
            "date": "2018-10-18T16:29:23.023000",
            "db": "NVD",
            "id": "CVE-2006-0839"
          },
          {
            "date": "2006-08-24T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200602-339"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200602-339"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Snort Frag3 Processor Packet Fragment Avoidance Detection Vulnerability",
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2006-0996"
          }
        ],
        "trust": 0.6
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Design Error",
        "sources": [
          {
            "db": "BID",
            "id": "16705"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200602-339"
          }
        ],
        "trust": 0.9
      }
    }

    VAR-202104-0883

    Vulnerability from variot - Updated: 2023-12-18 11:12

    Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of specific HTTP header parameters. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured file policy for HTTP packets and deliver a malicious payload. Pillow is a Python-based image processing library. There is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements. Cisco Firepower Threat Defense (FTD) is a set of unified software provided by Cisco to provide next-generation firewall services. policies, and deliver malicious payloads.The following products and versions are affected: Cisco Firepower Threat Defense (FTD): 6.2.2, 6.2.3, 6.3.0, 6.4.0, 6.5.0, 6.6.0, 6.7.0. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512


    Debian Security Advisory DSA-5354-1 security@debian.org https://www.debian.org/security/ Markus Koschany February 18, 2023 https://www.debian.org/security/faq


    Package : snort CVE ID : CVE-2020-3299 CVE-2020-3315 CVE-2021-1223 CVE-2021-1224 CVE-2021-1236 CVE-2021-1494 CVE-2021-1495 CVE-2021-34749 CVE-2021-40114 Debian Bug : 1021276

    Multiple security vulnerabilities were discovered in snort, a flexible Network Intrusion Detection System, which could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or bypass filtering technology on an affected device and ex-filtrate data from a compromised host.

    For the stable distribution (bullseye), these problems have been fixed in version 2.9.20-0+deb11u1.

    We recommend that you upgrade your snort packages.

    For the detailed security status of snort please refer to its security tracker page at: https://security-tracker.debian.org/tracker/snort

    Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE-----

    iQKTBAEBCgB9FiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAmPw/Y5fFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQACgkQ2a0UuVE7 UeQRrA/9EQ9kF1LT2fYUGFMyKeCQQFTB8tfIsyz2VUrGUtWlVDKsDVqfEMWa6Zwx rAaFnAPOBi1KNX1laencuphuiDIxLmvA0ShpHKo/R3vY4WXmNwJMjPWNr82oTw8j CEggyfj9i5V1EwZZi0B3L4WP1pCQcJRN6XVB3FJWZScyQFtRH0xO7l9acIV68lTs 9hGDDe2wn5ufHh0sXskZitgYoXfdHjjl3CzFxrmGGDq9KFr8rDIEUnZrm58DCRNL RkDmvxrEEsXGmzQlhT/2ea88aIXgNM4xnDztr3iV1v8JOMb6BwehrH43NgdDb5V8 6xBcHuXOLNI75mca1TQxwUd8PSNo3YK60IbDC2ztcUIIvl1xk8bDFyABb3gKvGoR izKFYej4hNeZb+0HWHsnO9vvP4t6LkKF/iIGNNVNmA9ZJA94ESCfItSozIITqRE2 sJQ43X9uQhX2p/dfeyNoOJDhie0RyZyg0rPxIDNonP1YJ8kTjMMHnRNqGn9MkVYK bNr1/sdLhH0TXvs5XoL9b9YjUPL67hDHL9bHLByOKNSxXrth+TcqFX+eg7Bztn1A vS4Sc2TWCuBa3jdrS9WJiy58aB1sTABRhN+tY4wVs+A9vIr1dKHn4wsB8axmpYDW cyzVbz9Q+fC+gXwDusZccBqfD7rByEFWXflBFI4PDXRrW+NPy8w\xdb5k -----END PGP SIGNATURE-----

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202104-0883",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "ios xe",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "17.4"
          },
          {
            "model": "firepower threat defense",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.4.0.12"
          },
          {
            "model": "ios xe",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "16.12"
          },
          {
            "model": "firepower threat defense",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.7.0"
          },
          {
            "model": "firepower threat defense",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.5.0"
          },
          {
            "model": "ios xe",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "17.1"
          },
          {
            "model": "ios xe",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "17.3.3"
          },
          {
            "model": "ios xe",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "16.12.5"
          },
          {
            "model": "ios xe",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "17.4.1"
          },
          {
            "model": "firepower threat defense",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.6.4"
          },
          {
            "model": "firepower threat defense",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.7.0.2"
          },
          {
            "model": "snort",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "snort",
            "version": "2.9.17.1"
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-1495"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "6.6.4",
                    "versionStartIncluding": "6.5.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "6.7.0.2",
                    "versionStartIncluding": "6.7.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "6.4.0.12",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:a:cisco:ios_xe:*:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "versionEndExcluding": "16.12.5",
                        "versionStartIncluding": "16.12",
                        "vulnerable": true
                      },
                      {
                        "cpe23Uri": "cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "versionEndExcluding": "2.9.17.1",
                        "vulnerable": true
                      },
                      {
                        "cpe23Uri": "cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "versionEndExcluding": "17.3.3",
                        "versionStartIncluding": "17.1",
                        "vulnerable": true
                      },
                      {
                        "cpe23Uri": "cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "versionEndExcluding": "17.4.1",
                        "versionStartIncluding": "17.4",
                        "vulnerable": true
                      }
                    ],
                    "operator": "OR"
                  },
                  {
                    "children": [],
                    "cpe_match": [
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1100-4g\\/6g_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1101_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1109_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1111x_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:111x_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1120_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:1160_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:3000_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4221_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4331_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4431_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:4461_integrated_services_router:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:c8200-1n-4t:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:c8200l-1n-4t:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:catalyst_8300-1n1s-4t2x:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:catalyst_8300-1n1s-6t:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:catalyst_8300-2n2s-4t2x:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:catalyst_8300-2n2s-6t:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      },
                      {
                        "cpe23Uri": "cpe:2.3:h:cisco:catalyst_8500l:-:*:*:*:*:*:*:*",
                        "cpe_name": [],
                        "vulnerable": false
                      }
                    ],
                    "operator": "OR"
                  }
                ],
                "cpe_match": [],
                "operator": "AND"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-1495"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Debian",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "171060"
          }
        ],
        "trust": 0.1
      },
      "cve": "CVE-2021-1495",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "impactScore": 2.9,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "VHN-374549",
                "impactScore": 2.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:N/I:P/A:N",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULMON",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2021-1495",
                "impactScore": 2.9,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "MEDIUM",
                "trust": 0.1,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "NVD",
                "availabilityImpact": "NONE",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 3.9,
                "impactScore": 1.4,
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
                "version": "3.1"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "ykramarz@cisco.com",
                "availabilityImpact": "NONE",
                "baseScore": 5.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 3.9,
                "impactScore": 1.4,
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
                "version": "3.1"
              }
            ],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2021-1495",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "ykramarz@cisco.com",
                "id": "CVE-2021-1495",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202104-975",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202104-2153",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-374549",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-1495",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-374549"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1495"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1495"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1495"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-2153"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of specific HTTP header parameters. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured file policy for HTTP packets and deliver a malicious payload. Pillow is a Python-based image processing library. \nThere is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements. Cisco Firepower Threat Defense (FTD) is a set of unified software provided by Cisco to provide next-generation firewall services. policies, and deliver malicious payloads.The following products and versions are affected: Cisco Firepower Threat Defense (FTD): 6.2.2, 6.2.3, 6.3.0, 6.4.0, 6.5.0, 6.6.0, 6.7.0. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA512\n\n- -------------------------------------------------------------------------\nDebian Security Advisory DSA-5354-1                   security@debian.org\nhttps://www.debian.org/security/                          Markus Koschany\nFebruary 18, 2023                     https://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage        : snort\nCVE ID         : CVE-2020-3299 CVE-2020-3315 CVE-2021-1223 CVE-2021-1224\n                 CVE-2021-1236 CVE-2021-1494 CVE-2021-1495 CVE-2021-34749\n                 CVE-2021-40114\nDebian Bug     : 1021276\n\nMultiple security vulnerabilities were discovered in snort, a flexible Network\nIntrusion Detection System, which could allow an unauthenticated, remote\nattacker to cause a denial of service (DoS) condition or bypass filtering\ntechnology on an affected device and ex-filtrate data from a compromised host. \n\nFor the stable distribution (bullseye), these problems have been fixed in\nversion 2.9.20-0+deb11u1. \n\nWe recommend that you upgrade your snort packages. \n\nFor the detailed security status of snort please refer to\nits security tracker page at:\nhttps://security-tracker.debian.org/tracker/snort\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n-----BEGIN PGP SIGNATURE-----\n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\ncyzVbz9Q+fC+gXwDusZccBqfD7rByEFWXflBFI4PDXRrW+NPy8w\\xdb5k\n-----END PGP SIGNATURE-----\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-1495"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "VULHUB",
            "id": "VHN-374549"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1495"
          },
          {
            "db": "PACKETSTORM",
            "id": "171060"
          }
        ],
        "trust": 1.71
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-1495",
            "trust": 1.9
          },
          {
            "db": "CS-HELP",
            "id": "SB2021041363",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.1467",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2023.1047",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2023.0833",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021042922",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-2153",
            "trust": 0.6
          },
          {
            "db": "PACKETSTORM",
            "id": "171060",
            "trust": 0.2
          },
          {
            "db": "VULHUB",
            "id": "VHN-374549",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1495",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-374549"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1495"
          },
          {
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1495"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-2153"
          }
        ]
      },
      "id": "VAR-202104-0883",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-374549"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2023-12-18T11:12:39.706000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Cisco Firepower Threat Defense Fixing measures for security feature vulnerabilities",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqbyid.tag?id=151550"
          },
          {
            "title": "Cisco: Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts\u0026qid=cisco-sa-http-fp-bp-kfddcqhc"
          },
          {
            "title": "Debian CVElist Bug Report Logs: snort: CVE-2020-3315 CVE-2021-1223 CVE-2021-1224 CVE-2021-1494 CVE-2021-1495 CVE-2021-34749 CVE-2021-40114",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=1773b4dd82d4d83f1431e21300c33475"
          },
          {
            "title": "Debian Security Advisories: DSA-5354-1 snort -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=6ecec49445da07dca8fb53a5a107855c"
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/live-hack-cve/cve-2021-1495 "
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2021-1495"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-2153"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-755",
            "trust": 1.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-374549"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1495"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.8,
            "url": "https://www.debian.org/security/2023/dsa-5354"
          },
          {
            "trust": 1.8,
            "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
          },
          {
            "trust": 1.3,
            "url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-http-fp-bp-kfddcqhc"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1495"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021041363"
          },
          {
            "trust": 0.6,
            "url": "http-fp-bp-kfddcqhc"
          },
          {
            "trust": 0.6,
            "url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021042922"
          },
          {
            "trust": 0.6,
            "url": "https://vigilance.fr/vulnerability/snort-data-transit-via-http-detection-engine-file-policy-bypass-35505"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2023.0833"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2023.1047"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.1467"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/755.html"
          },
          {
            "trust": 0.1,
            "url": "https://github.com/live-hack-cve/cve-2021-1495"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-34749"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-40114"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-3299"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1223"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-3315"
          },
          {
            "trust": 0.1,
            "url": "https://security-tracker.debian.org/tracker/snort"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1236"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1494"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-1224"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/faq"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-374549"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1495"
          },
          {
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1495"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-2153"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-374549"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-1495"
          },
          {
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-1495"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-2153"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-04-29T00:00:00",
            "db": "VULHUB",
            "id": "VHN-374549"
          },
          {
            "date": "2021-04-29T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-1495"
          },
          {
            "date": "2023-02-20T16:53:59",
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "date": "2021-04-29T18:15:09.430000",
            "db": "NVD",
            "id": "CVE-2021-1495"
          },
          {
            "date": "2021-04-13T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "date": "2021-04-29T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-2153"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2023-02-19T00:00:00",
            "db": "VULHUB",
            "id": "VHN-374549"
          },
          {
            "date": "2023-02-19T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-1495"
          },
          {
            "date": "2023-11-07T03:28:25.833000",
            "db": "NVD",
            "id": "CVE-2021-1495"
          },
          {
            "date": "2021-04-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "date": "2023-02-21T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-2153"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "171060"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-2153"
          }
        ],
        "trust": 0.7
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Pillow Buffer error vulnerability",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          }
        ],
        "trust": 0.6
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200607-0505

    Vulnerability from variot - Updated: 2023-12-18 11:12

    jmx-console/HtmlAdaptor in the jmx-console in the JBoss web application server, as shipped with Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.1, allows remote attackers to gain privileges as the CS-MARS administrator and execute arbitrary Java code via an invokeOp action in the BSHDeployer jboss.scripts service name. A buffer overflow exists in the Snort Back Orifice preprocessor that may allow a remote, unauthenticated attacker to execute arbitrary code, possibly with elevated privileges. Cisco Security Monitoring, Analysis and Response System (CS-MARS) is prone to multiple vulnerabilities, including privilege-escalation, arbitrary command-execution, and information-disclosure issues. This may facilitate a remote compromise of affected computers. Cisco has released version 4.2.1 to address these issues; prior versions are reported vulnerable. Snort is susceptible to a remote buffer overflow vulnerability. This issue is due to a failure of the application to securely copy network-derived data into sensitive process buffers. The specific issue exists in the Back Orifice preprocessor. This may facilitate unauthorized access or privilege escalation. Due to the nature of this issue, attackers may exploit it by sending a single UDP packet with a potentially spoofed source address to an arbitrary destination address and port. As long as the application can sniff the packet, it may be exploited. These aspects of this issue may aid attackers in bypassing firewalls in order to compromise a wider number of computers. Reportedly, this issue is difficult to reliably exploit across differing operating systems and compiler versions. Failed exploit attempts likely result in crashing the application, thereby disabling detection of other attacks. Snort versions 2.4.0 through 2.4.2 are affected by this issue. Other versions may also be affected, but this has not been confirmed. There is a loophole when the server processes user requests. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

                     National Cyber Alert System
    
               Technical Cyber Security Alert TA05-291A
    

    Snort Back Orifice Preprocessor Buffer Overflow

    Original release date: October 18, 2005 Last revised: -- Source: US-CERT

    Systems Affected

     * Snort versions 2.4.0 to 2.4.2
     * Sourcefire Intrusion Sensors
    

    Other products that use Snort or Snort components may be affected.

    I. Description

    Snort is a widely-deployed, open-source network intrusion detection system (IDS). Snort and its components are used in other IDS products, notably Sourcefire Intrusion Sensors, and Snort is included with a number of operating system distributions.

    Snort preprocessors are modular plugins that extend functionality by operating on packets before the detection engine is run. The ping detection code does not adequately limit the amount of data that is read from the packet into a fixed-length buffer, thus creating the potential for a buffer overflow.

    The vulnerable code will process any UDP packet that is not destined to or sourced from the default Back Orifice port (31337/udp). An attacker could exploit this vulnerability by sending a specially crafted UDP packet to a host or network monitored by Snort.

    US-CERT is tracking this vulnerability as VU#175500. Further information is available in an advisory from Internet Security Systems (ISS).

    II. Snort typically runs with root or SYSTEM privileges, so an attacker could take complete control of a vulnerable system. An attacker does not need to target a Snort sensor directly; the attacker can target any host or network monitored by Snort.

    III. Solution

    Upgrade

    Sourcefire has released Snort 2.4.3 which is available from the Snort download site. For information about other vendors, please see the Systems Affected section of VU#175500.

    Disable Back Orifice Preprocessor

    To disable the Back Orifice preprocessor, comment out the line that loads the preprocessor in the Snort configuration file (typically /etc/snort.conf on UNIX and Linux systems):

     [/etc/snort.conf]
     ... 
     #preprocessor bo
     ...
    

    Restart Snort for the change to take effect.

    Restrict Outbound Traffic

    Consider preventing Snort sensors from initiating outbound connections and restricting outbound traffic to only those hosts and networks that have legitimate requirements to communicate with the sensors. While this will not prevent exploitation of the vulnerability, it may make it more difficult for an attacker to access a compromised system or reconnoiter other systems.

    Appendix A. References

     * US-CERT Vulnerability Note VU#175500 -
       <http://www.kb.cert.org/vuls/id/177500>
    
     * Fixes and Mitigation Instructions Available for Snort Back
       Orifice Vulnerability -
       <http://www.snort.org/pub-bin/snortnews.cgi#99>
    
     * Snort downloads - <http://www.snort.org/dl/>
    
     * Snort 2.4.3 Changelog -
       <http://www.snort.org/docs/change_logs/2.4.3/Changelog.txt>
    
     * Preprocessors -
       <http://www.snort.org/docs/snort_htmanuals/htmanual_2.4/
       node11.html#SECTION00310000000000000000>
    
     * Snort Back Orifice Parsing Remote Code Execution -
       <http://xforce.iss.net/xforce/alerts/id/207>
    

    This vulnerability was researched and reported by Internet Security Systems (ISS).


    The most recent version of this document can be found at:

     <http://www.us-cert.gov/cas/techalerts/TA05-291A.html>
    

    Feedback can be directed to US-CERT Technical Staff. Please send email to cert@cert.org with "TA05-291A Feedback VU#175500" in the subject.


    For instructions on subscribing to or unsubscribing from this mailing list, visit http://www.us-cert.gov/cas/signup.html.


    Produced 2005 by US-CERT, a government organization.

    Terms of use:

     <http://www.us-cert.gov/legal.html>
    

    Revision History

    Oct 18, 2005: Initial release

    -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux)

    iQEVAwUBQ1VB130pj593lg50AQLY6wf+Kq/rI3wxG4rGr+OdVrpl3v+TfTMp6MX3 T0e99ybRSGKeWQCleMQYdBYrS+7UyCa28T1yE8ENe4SuYLPj7ttTqpd0AGxn7f8H +qOY0GnJwXvrWlKCfVtAhjo5JFDxgZQV9P/13MwjcsJrGTtHzhuJ8YZc4RtSMyVX 4nf2s4Nymjd2+jIEX9BnwRIe/E47TRdFLSsza36mhKZLZV1lxLdJYywCZSsQLWNM nL9gohRojR/6wQk8sLjef8LCv2JFu3btsqrrblcTWqfB6GhVR9OSUBhL+b8P/mme jVd9eE0OS5v8rzhaEMiYIMI+pEZEpATj4BnVoLwPkLAoD6ObGJKHkQ== =jjID -----END PGP SIGNATURE----- .


    Hardcore Disassembler / Reverse Engineer Wanted!

    Want to work with IDA and BinDiff? Want to write PoC's and Exploits?

    Your nationality is not important. We will get you a work permit, find an apartment, and offer a relocation compensation package.

    http://secunia.com/hardcore_disassembler_and_reverse_engineer/


    TITLE: CS-MARS Multiple Vulnerabilities

    SECUNIA ADVISORY ID: SA21118

    VERIFY ADVISORY: http://secunia.com/advisories/21118/

    CRITICAL: Moderately critical

    IMPACT: Security Bypass, Exposure of system information, System access

    WHERE:

    From local network

    OPERATING SYSTEM: Cisco Security Monitoring, Analysis and Response System (CS-MARS) 4.x http://secunia.com/product/6780/

    DESCRIPTION: Multiple vulnerabilities have been reported in CS-MARS, which can be exploited by malicious, local users to bypass certain security restrictions and malicious people to gain knowledge of system information and compromise a vulnerable system.

    2) The included JBoss web application server is also affected by an information disclosure weakness.

    CS-MARS also ships with an Oracle database containing several default Oracle accounts with well-known passwords.

    SOLUTION: Update to version 4.2.1 or later.

    PROVIDED AND/OR DISCOVERED BY: 1+2) Jon Hart 3) Reported by the vendor.

    ORIGINAL ADVISORY: http://www.cisco.com/warp/public/707/cisco-sa-20060719-mars.shtml

    OTHER REFERENCES: SA15746: http://secunia.com/advisories/15746/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    .

    The vulnerability is caused due to a boundary error in the handling of Back Orifice packets.

    Alternatively, disable the Back Orifice pre-processor

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-200607-0505",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "security monitoring analysis and response system",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "cisco",
            "version": "4.2.0"
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "freebsd",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "suse linux",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "snort",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sourcefire",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ubuntu",
            "version": null
          },
          {
            "model": "security monitoring, analysis and response system",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "4.2.1"
          },
          {
            "model": "networks contivity vpn switch",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "nortel",
            "version": "20004.1.3"
          },
          {
            "model": "networks contivity vpn switch",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "nortel",
            "version": "20004.1.2"
          },
          {
            "model": "networks contivity vpn switch",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "nortel",
            "version": "20004.1"
          },
          {
            "model": "cs-mars",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "cisco",
            "version": "4.1.5"
          },
          {
            "model": "cs-mars",
            "scope": "ne",
            "trust": 0.6,
            "vendor": "cisco",
            "version": "4.2.1"
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "2.4.2"
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "2.4.1"
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "2.4.0"
          },
          {
            "model": "networks threat protection system intrusion sensor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "4.1"
          },
          {
            "model": "networks threat protection system defense center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "4.1"
          },
          {
            "model": "project snort",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "snort",
            "version": "2.4.3"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "db": "BID",
            "id": "19075"
          },
          {
            "db": "BID",
            "id": "19071"
          },
          {
            "db": "BID",
            "id": "15131"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002836"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-3733"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-343"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:security_monitoring_analysis_and_response_system:4.2.0:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-3733"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "These issues were disclosed by the vendor.",
        "sources": [
          {
            "db": "BID",
            "id": "19075"
          },
          {
            "db": "BID",
            "id": "19071"
          }
        ],
        "trust": 0.6
      },
      "cve": "CVE-2006-3733",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 7.5,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": true,
                "obtainUserPrivilege": false,
                "severity": "HIGH",
                "trust": 1.0,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "Low",
                "accessVector": "Network",
                "authentication": "None",
                "author": "NVD",
                "availabilityImpact": "Partial",
                "baseScore": 7.5,
                "confidentialityImpact": "Partial",
                "exploitabilityScore": null,
                "id": "CVE-2006-3733",
                "impactScore": null,
                "integrityImpact": "Partial",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "High",
                "trust": 0.8,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 7.5,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "VHN-19841",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2006-3733",
                "trust": 1.8,
                "value": "HIGH"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#175500",
                "trust": 0.8,
                "value": "31.05"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200607-343",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-19841",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "db": "VULHUB",
            "id": "VHN-19841"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002836"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-3733"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-343"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "jmx-console/HtmlAdaptor in the jmx-console in the JBoss web application server, as shipped with Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.1, allows remote attackers to gain privileges as the CS-MARS administrator and execute arbitrary Java code via an invokeOp action in the BSHDeployer jboss.scripts service name. A buffer overflow exists in the Snort Back Orifice preprocessor that may allow a remote, unauthenticated attacker to execute arbitrary code, possibly with elevated privileges. Cisco Security Monitoring, Analysis and Response System (CS-MARS) is prone to multiple vulnerabilities, including privilege-escalation, arbitrary command-execution, and information-disclosure issues. This may facilitate a remote compromise of affected computers. \nCisco has released version 4.2.1 to address these issues; prior versions are reported vulnerable. Snort is susceptible to a remote buffer overflow vulnerability. This issue is due to a failure of the application to securely copy network-derived data into sensitive process buffers. The specific issue exists in the Back Orifice preprocessor. This may facilitate unauthorized access or privilege escalation. \nDue to the nature of this issue, attackers may exploit it by sending a single UDP packet with a potentially spoofed source address to an arbitrary destination address and port. As long as the application can sniff the packet, it may be exploited. These aspects of this issue may aid attackers in bypassing firewalls in order to compromise a wider number of computers. \nReportedly, this issue is difficult to reliably exploit across differing operating systems and compiler versions. Failed exploit attempts likely result in crashing the application, thereby disabling detection of other attacks. \nSnort versions 2.4.0 through 2.4.2 are affected by this issue. Other versions may also be affected, but this has not been confirmed. There is a loophole when the server processes user requests. \n-----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n\n                     National Cyber Alert System\n\n               Technical Cyber Security Alert TA05-291A\n\n\nSnort Back Orifice Preprocessor Buffer Overflow\n\n   Original release date: October 18, 2005\n   Last revised: --\n   Source: US-CERT\n\n\nSystems Affected\n\n     * Snort versions 2.4.0 to 2.4.2\n     * Sourcefire Intrusion Sensors\n\n   Other products that use Snort or Snort components may be affected. \n\n\nI. Description\n\n   Snort is a widely-deployed, open-source network intrusion detection\n   system (IDS). Snort and its components are used in other IDS\n   products, notably Sourcefire Intrusion Sensors, and Snort is\n   included with a number of operating system distributions. \n\n   Snort preprocessors are modular plugins that extend functionality\n   by operating on packets before the detection engine is run. The ping detection code does\n   not adequately limit the amount of data that is read from the\n   packet into a fixed-length buffer, thus creating the potential for\n   a buffer overflow. \n\n   The vulnerable code will process any UDP packet that is not\n   destined to or sourced from the default Back Orifice port\n   (31337/udp). An attacker could exploit this vulnerability by\n   sending a specially crafted UDP packet to a host or network\n   monitored by Snort. \n\n   US-CERT is tracking this vulnerability as VU#175500. Further\n   information is available in an advisory from Internet Security\n   Systems (ISS). \n\n\nII. Snort typically runs with root or\n   SYSTEM privileges, so an attacker could take complete control of a\n   vulnerable system. An attacker does not need to target a Snort\n   sensor directly; the attacker can target any host or network\n   monitored by Snort. \n\n\nIII. Solution\n\nUpgrade\n\n   Sourcefire has released Snort 2.4.3 which is available from the\n   Snort download site. For information about other vendors, please\n   see the Systems Affected section of VU#175500. \n\nDisable Back Orifice Preprocessor\n\n   To disable the Back Orifice preprocessor, comment out the line that\n   loads the preprocessor in the Snort configuration file (typically\n   /etc/snort.conf on UNIX and Linux systems):\n\n     [/etc/snort.conf]\n     ... \n     #preprocessor bo\n     ... \n   \n   Restart Snort for the change to take effect. \n\nRestrict Outbound Traffic\n\n   Consider preventing Snort sensors from initiating outbound\n   connections and restricting outbound traffic to only those hosts\n   and networks that have legitimate requirements to communicate with\n   the sensors. While this will not prevent exploitation of the\n   vulnerability, it may make it more difficult for an attacker to\n   access a compromised system or reconnoiter other systems. \n\n\nAppendix A. References\n\n     * US-CERT Vulnerability Note VU#175500 -\n       \u003chttp://www.kb.cert.org/vuls/id/177500\u003e\n\n     * Fixes and Mitigation Instructions Available for Snort Back\n       Orifice Vulnerability -\n       \u003chttp://www.snort.org/pub-bin/snortnews.cgi#99\u003e\n\n     * Snort downloads - \u003chttp://www.snort.org/dl/\u003e\n\n     * Snort 2.4.3 Changelog -\n       \u003chttp://www.snort.org/docs/change_logs/2.4.3/Changelog.txt\u003e\n\n     * Preprocessors -\n       \u003chttp://www.snort.org/docs/snort_htmanuals/htmanual_2.4/\n       node11.html#SECTION00310000000000000000\u003e\n\n     * Snort Back Orifice Parsing Remote Code Execution -\n       \u003chttp://xforce.iss.net/xforce/alerts/id/207\u003e\n\n\n ____________________________________________________________________\n\n   This vulnerability was researched and reported by Internet Security\n   Systems (ISS). \n ____________________________________________________________________\n\n   The most recent version of this document can be found at:\n\n     \u003chttp://www.us-cert.gov/cas/techalerts/TA05-291A.html\u003e\n ____________________________________________________________________\n\n   Feedback can be directed to US-CERT Technical Staff. Please send\n   email to \u003ccert@cert.org\u003e with \"TA05-291A Feedback VU#175500\" in the\n   subject. \n ____________________________________________________________________\n\n   For instructions on subscribing to or unsubscribing from this\n   mailing list, visit \u003chttp://www.us-cert.gov/cas/signup.html\u003e. \n ____________________________________________________________________\n\n   Produced 2005 by US-CERT, a government organization. \n\n   Terms of use:\n\n     \u003chttp://www.us-cert.gov/legal.html\u003e\n ____________________________________________________________________\n\n\nRevision History\n\n   Oct 18, 2005: Initial release\n\n\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.2.1 (GNU/Linux)\n\niQEVAwUBQ1VB130pj593lg50AQLY6wf+Kq/rI3wxG4rGr+OdVrpl3v+TfTMp6MX3\nT0e99ybRSGKeWQCleMQYdBYrS+7UyCa28T1yE8ENe4SuYLPj7ttTqpd0AGxn7f8H\n+qOY0GnJwXvrWlKCfVtAhjo5JFDxgZQV9P/13MwjcsJrGTtHzhuJ8YZc4RtSMyVX\n4nf2s4Nymjd2+jIEX9BnwRIe/E47TRdFLSsza36mhKZLZV1lxLdJYywCZSsQLWNM\nnL9gohRojR/6wQk8sLjef8LCv2JFu3btsqrrblcTWqfB6GhVR9OSUBhL+b8P/mme\njVd9eE0OS5v8rzhaEMiYIMI+pEZEpATj4BnVoLwPkLAoD6ObGJKHkQ==\n=jjID\n-----END PGP SIGNATURE-----\n. \n\n----------------------------------------------------------------------\n\nHardcore Disassembler / Reverse Engineer Wanted!\n\nWant to work with IDA and BinDiff?\nWant to write PoC\u0027s and Exploits?\n\nYour nationality is not important. \nWe will get you a work permit, find an apartment, and offer a\nrelocation compensation package. \n\nhttp://secunia.com/hardcore_disassembler_and_reverse_engineer/\n\n----------------------------------------------------------------------\n\nTITLE:\nCS-MARS Multiple Vulnerabilities\n\nSECUNIA ADVISORY ID:\nSA21118\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/21118/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nSecurity Bypass, Exposure of system information, System access\n\nWHERE:\n\u003eFrom local network\n\nOPERATING SYSTEM:\nCisco Security Monitoring, Analysis and Response System (CS-MARS) 4.x\nhttp://secunia.com/product/6780/\n\nDESCRIPTION:\nMultiple vulnerabilities have been reported in CS-MARS, which can be\nexploited by malicious, local users to bypass certain security\nrestrictions and malicious people to gain knowledge of system\ninformation and compromise a vulnerable system. \n\n2) The included JBoss web application server is also affected by an\ninformation disclosure weakness. \n\nCS-MARS also ships with an Oracle database containing several default\nOracle accounts with well-known passwords. \n\nSOLUTION:\nUpdate to version 4.2.1 or later. \n\nPROVIDED AND/OR DISCOVERED BY:\n1+2) Jon Hart\n3) Reported by the vendor. \n\nORIGINAL ADVISORY:\nhttp://www.cisco.com/warp/public/707/cisco-sa-20060719-mars.shtml\n\nOTHER REFERENCES:\nSA15746:\nhttp://secunia.com/advisories/15746/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n. \n\nThe vulnerability is caused due to a boundary error in the handling\nof Back Orifice packets. \n\nAlternatively, disable the Back Orifice pre-processor",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-3733"
          },
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002836"
          },
          {
            "db": "BID",
            "id": "19075"
          },
          {
            "db": "BID",
            "id": "19071"
          },
          {
            "db": "BID",
            "id": "15131"
          },
          {
            "db": "VULHUB",
            "id": "VHN-19841"
          },
          {
            "db": "PACKETSTORM",
            "id": "40869"
          },
          {
            "db": "PACKETSTORM",
            "id": "48383"
          },
          {
            "db": "PACKETSTORM",
            "id": "40766"
          }
        ],
        "trust": 3.51
      },
      "exploit_availability": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "reference": "https://www.scap.org.cn/vuln/vhn-19841",
            "trust": 0.1,
            "type": "unknown"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-19841"
          }
        ]
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2006-3733",
            "trust": 2.5
          },
          {
            "db": "BID",
            "id": "19071",
            "trust": 2.0
          },
          {
            "db": "BID",
            "id": "19075",
            "trust": 2.0
          },
          {
            "db": "SECUNIA",
            "id": "21118",
            "trust": 1.8
          },
          {
            "db": "OSVDB",
            "id": "27419",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1016537",
            "trust": 1.7
          },
          {
            "db": "VUPEN",
            "id": "ADV-2006-2887",
            "trust": 1.7
          },
          {
            "db": "CERT/CC",
            "id": "VU#175500",
            "trust": 1.2
          },
          {
            "db": "SECUNIA",
            "id": "17220",
            "trust": 1.0
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002836",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-343",
            "trust": 0.7
          },
          {
            "db": "BUGTRAQ",
            "id": "20060720 CISCO MARS \u003c 4.2.1 REMOTE COMPROMISE",
            "trust": 0.6
          },
          {
            "db": "CISCO",
            "id": "20060719 MULTIPLE VULNERABILITIES IN CISCO SECURITY MONITORING, ANALYSIS AND RESPONSE SYSTEM (CS-MARS)",
            "trust": 0.6
          },
          {
            "db": "FULLDISC",
            "id": "20060720 CISCO MARS \u003c 4.2.1 REMOTE COMPROMISE",
            "trust": 0.6
          },
          {
            "db": "XF",
            "id": "27811",
            "trust": 0.6
          },
          {
            "db": "USCERT",
            "id": "TA05-291A",
            "trust": 0.4
          },
          {
            "db": "BID",
            "id": "15131",
            "trust": 0.3
          },
          {
            "db": "EXPLOIT-DB",
            "id": "28245",
            "trust": 0.1
          },
          {
            "db": "SEEBUG",
            "id": "SSVID-81819",
            "trust": 0.1
          },
          {
            "db": "VULHUB",
            "id": "VHN-19841",
            "trust": 0.1
          },
          {
            "db": "CERT/CC",
            "id": "VU#177500",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "40869",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "48383",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "40766",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "db": "VULHUB",
            "id": "VHN-19841"
          },
          {
            "db": "BID",
            "id": "19075"
          },
          {
            "db": "BID",
            "id": "19071"
          },
          {
            "db": "BID",
            "id": "15131"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002836"
          },
          {
            "db": "PACKETSTORM",
            "id": "40869"
          },
          {
            "db": "PACKETSTORM",
            "id": "48383"
          },
          {
            "db": "PACKETSTORM",
            "id": "40766"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-3733"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-343"
          }
        ]
      },
      "id": "VAR-200607-0505",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-19841"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2023-12-18T11:12:30.015000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "cisco-sa-20060719-mars",
            "trust": 0.8,
            "url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20060719-mars"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002836"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-264",
            "trust": 1.9
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-19841"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002836"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-3733"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.4,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20060719-mars.shtml"
          },
          {
            "trust": 1.7,
            "url": "http://www.securityfocus.com/bid/19071"
          },
          {
            "trust": 1.7,
            "url": "http://www.securityfocus.com/bid/19075"
          },
          {
            "trust": 1.7,
            "url": "http://archives.neohapsis.com/archives/fulldisclosure/2006-07/0424.html"
          },
          {
            "trust": 1.7,
            "url": "http://www.osvdb.org/27419"
          },
          {
            "trust": 1.7,
            "url": "http://securitytracker.com/id?1016537"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/21118"
          },
          {
            "trust": 1.2,
            "url": "http://xforce.iss.net/xforce/alerts/id/207"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/archive/1/440641/100/100/threaded"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2006/2887"
          },
          {
            "trust": 1.1,
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27811"
          },
          {
            "trust": 0.9,
            "url": "http://www.snort.org/pub-bin/snortnews.cgi#99"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17220/"
          },
          {
            "trust": 0.8,
            "url": "http://www.snort.org/docs/change_logs/2.4.3/changelog.txt"
          },
          {
            "trust": 0.8,
            "url": "http://www.snort.org/docs/snort_htmanuals/htmanual_2.4/node11.html#section00310000000000000000"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-3733"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2006-3733"
          },
          {
            "trust": 0.6,
            "url": "http://www.cisco.com/en/us/products/sw/voicesw/ps4625/index.html"
          },
          {
            "trust": 0.6,
            "url": "http://www.cisco.com/en/us/products/ps6241/index.html"
          },
          {
            "trust": 0.6,
            "url": "/archive/1/440580"
          },
          {
            "trust": 0.6,
            "url": "http://xforce.iss.net/xforce/xfdb/27811"
          },
          {
            "trust": 0.6,
            "url": "http://www.securityfocus.com/archive/1/archive/1/440641/100/100/threaded"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2006/2887"
          },
          {
            "trust": 0.4,
            "url": "http://www.kb.cert.org/vuls/id/175500"
          },
          {
            "trust": 0.3,
            "url": "http://wiki.jboss.org/wiki/wiki.jsp?page=securejboss"
          },
          {
            "trust": 0.3,
            "url": "/archive/1/440641"
          },
          {
            "trust": 0.3,
            "url": "http://www.snort.org/rules/advisories/snort_update_20051018.html"
          },
          {
            "trust": 0.3,
            "url": "http://www.snort.org/"
          },
          {
            "trust": 0.3,
            "url": "http://www.snort.org/pub-bin/snortnews.cgi"
          },
          {
            "trust": 0.3,
            "url": "http://www.us-cert.gov/cas/techalerts/ta05-291a.html"
          },
          {
            "trust": 0.3,
            "url": "http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=bltndetail\u0026documentoid=362187\u0026renditionid="
          },
          {
            "trust": 0.2,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.2,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.2,
            "url": "http://secunia.com/about_secunia_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://xforce.iss.net/xforce/alerts/id/207\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.snort.org/docs/snort_htmanuals/htmanual_2.4/"
          },
          {
            "trust": 0.1,
            "url": "http://www.us-cert.gov/cas/techalerts/ta05-291a.html\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.snort.org/docs/change_logs/2.4.3/changelog.txt\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.snort.org/dl/\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.us-cert.gov/cas/signup.html\u003e."
          },
          {
            "trust": 0.1,
            "url": "http://www.us-cert.gov/legal.html\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.snort.org/pub-bin/snortnews.cgi#99\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.kb.cert.org/vuls/id/177500\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6780/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/15746/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/hardcore_disassembler_and_reverse_engineer/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/21118/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/5691/"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "db": "VULHUB",
            "id": "VHN-19841"
          },
          {
            "db": "BID",
            "id": "19075"
          },
          {
            "db": "BID",
            "id": "19071"
          },
          {
            "db": "BID",
            "id": "15131"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002836"
          },
          {
            "db": "PACKETSTORM",
            "id": "40869"
          },
          {
            "db": "PACKETSTORM",
            "id": "48383"
          },
          {
            "db": "PACKETSTORM",
            "id": "40766"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-3733"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-343"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "db": "VULHUB",
            "id": "VHN-19841"
          },
          {
            "db": "BID",
            "id": "19075"
          },
          {
            "db": "BID",
            "id": "19071"
          },
          {
            "db": "BID",
            "id": "15131"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002836"
          },
          {
            "db": "PACKETSTORM",
            "id": "40869"
          },
          {
            "db": "PACKETSTORM",
            "id": "48383"
          },
          {
            "db": "PACKETSTORM",
            "id": "40766"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-3733"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-343"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2005-10-18T00:00:00",
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "date": "2006-07-21T00:00:00",
            "db": "VULHUB",
            "id": "VHN-19841"
          },
          {
            "date": "2006-07-19T00:00:00",
            "db": "BID",
            "id": "19075"
          },
          {
            "date": "2006-07-19T00:00:00",
            "db": "BID",
            "id": "19071"
          },
          {
            "date": "2005-10-18T00:00:00",
            "db": "BID",
            "id": "15131"
          },
          {
            "date": "2012-12-20T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2006-002836"
          },
          {
            "date": "2005-10-24T23:41:37",
            "db": "PACKETSTORM",
            "id": "40869"
          },
          {
            "date": "2006-07-20T08:48:26",
            "db": "PACKETSTORM",
            "id": "48383"
          },
          {
            "date": "2005-10-18T22:10:31",
            "db": "PACKETSTORM",
            "id": "40766"
          },
          {
            "date": "2006-07-21T14:03:00",
            "db": "NVD",
            "id": "CVE-2006-3733"
          },
          {
            "date": "2006-07-21T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200607-343"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2005-11-11T00:00:00",
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "date": "2018-10-17T00:00:00",
            "db": "VULHUB",
            "id": "VHN-19841"
          },
          {
            "date": "2006-07-20T21:57:00",
            "db": "BID",
            "id": "19075"
          },
          {
            "date": "2006-07-20T18:52:00",
            "db": "BID",
            "id": "19071"
          },
          {
            "date": "2005-10-18T00:00:00",
            "db": "BID",
            "id": "15131"
          },
          {
            "date": "2012-12-20T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2006-002836"
          },
          {
            "date": "2018-10-17T21:29:06.937000",
            "db": "NVD",
            "id": "CVE-2006-3733"
          },
          {
            "date": "2006-08-02T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200607-343"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "network",
        "sources": [
          {
            "db": "BID",
            "id": "19075"
          },
          {
            "db": "BID",
            "id": "19071"
          },
          {
            "db": "BID",
            "id": "15131"
          }
        ],
        "trust": 0.9
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Snort Back Orifice preprocessor buffer overflow",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Access Validation Error",
        "sources": [
          {
            "db": "BID",
            "id": "19075"
          },
          {
            "db": "BID",
            "id": "19071"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200607-0506

    Vulnerability from variot - Updated: 2023-12-18 11:07

    Multiple unspecified vulnerabilities in the Command Line Interface (CLI) for Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.1, allow local CS-MARS administrators to execute arbitrary commands as root. A buffer overflow exists in the Snort Back Orifice preprocessor that may allow a remote, unauthenticated attacker to execute arbitrary code, possibly with elevated privileges. This may facilitate a remote compromise of affected computers. Cisco has released version 4.2.1 to address these issues; prior versions are reported vulnerable. Snort is susceptible to a remote buffer overflow vulnerability. This issue is due to a failure of the application to securely copy network-derived data into sensitive process buffers. The specific issue exists in the Back Orifice preprocessor. This may facilitate unauthorized access or privilege escalation. Due to the nature of this issue, attackers may exploit it by sending a single UDP packet with a potentially spoofed source address to an arbitrary destination address and port. As long as the application can sniff the packet, it may be exploited. These aspects of this issue may aid attackers in bypassing firewalls in order to compromise a wider number of computers. Reportedly, this issue is difficult to reliably exploit across differing operating systems and compiler versions. Failed exploit attempts likely result in crashing the application, thereby disabling detection of other attacks. Snort versions 2.4.0 through 2.4.2 are affected by this issue. Other versions may also be affected, but this has not been confirmed. The CS-MARS CLI is a restricted shell environment that allows authenticated administrators to perform system maintenance tasks. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

                     National Cyber Alert System
    
               Technical Cyber Security Alert TA05-291A
    

    Snort Back Orifice Preprocessor Buffer Overflow

    Original release date: October 18, 2005 Last revised: -- Source: US-CERT

    Systems Affected

     * Snort versions 2.4.0 to 2.4.2
     * Sourcefire Intrusion Sensors
    

    Other products that use Snort or Snort components may be affected.

    I. Description

    Snort is a widely-deployed, open-source network intrusion detection system (IDS). Snort and its components are used in other IDS products, notably Sourcefire Intrusion Sensors, and Snort is included with a number of operating system distributions.

    Snort preprocessors are modular plugins that extend functionality by operating on packets before the detection engine is run. The ping detection code does not adequately limit the amount of data that is read from the packet into a fixed-length buffer, thus creating the potential for a buffer overflow.

    The vulnerable code will process any UDP packet that is not destined to or sourced from the default Back Orifice port (31337/udp). An attacker could exploit this vulnerability by sending a specially crafted UDP packet to a host or network monitored by Snort.

    US-CERT is tracking this vulnerability as VU#175500. Further information is available in an advisory from Internet Security Systems (ISS).

    II. Snort typically runs with root or SYSTEM privileges, so an attacker could take complete control of a vulnerable system. An attacker does not need to target a Snort sensor directly; the attacker can target any host or network monitored by Snort.

    III. Solution

    Upgrade

    Sourcefire has released Snort 2.4.3 which is available from the Snort download site. For information about other vendors, please see the Systems Affected section of VU#175500.

    Disable Back Orifice Preprocessor

    To disable the Back Orifice preprocessor, comment out the line that loads the preprocessor in the Snort configuration file (typically /etc/snort.conf on UNIX and Linux systems):

     [/etc/snort.conf]
     ... 
     #preprocessor bo
     ...
    

    Restart Snort for the change to take effect.

    Restrict Outbound Traffic

    Consider preventing Snort sensors from initiating outbound connections and restricting outbound traffic to only those hosts and networks that have legitimate requirements to communicate with the sensors. While this will not prevent exploitation of the vulnerability, it may make it more difficult for an attacker to access a compromised system or reconnoiter other systems.

    Appendix A. References

     * US-CERT Vulnerability Note VU#175500 -
       <http://www.kb.cert.org/vuls/id/177500>
    
     * Fixes and Mitigation Instructions Available for Snort Back
       Orifice Vulnerability -
       <http://www.snort.org/pub-bin/snortnews.cgi#99>
    
     * Snort downloads - <http://www.snort.org/dl/>
    
     * Snort 2.4.3 Changelog -
       <http://www.snort.org/docs/change_logs/2.4.3/Changelog.txt>
    
     * Preprocessors -
       <http://www.snort.org/docs/snort_htmanuals/htmanual_2.4/
       node11.html#SECTION00310000000000000000>
    
     * Snort Back Orifice Parsing Remote Code Execution -
       <http://xforce.iss.net/xforce/alerts/id/207>
    

    This vulnerability was researched and reported by Internet Security Systems (ISS).


    The most recent version of this document can be found at:

     <http://www.us-cert.gov/cas/techalerts/TA05-291A.html>
    

    Feedback can be directed to US-CERT Technical Staff. Please send email to cert@cert.org with "TA05-291A Feedback VU#175500" in the subject.


    For instructions on subscribing to or unsubscribing from this mailing list, visit http://www.us-cert.gov/cas/signup.html.


    Produced 2005 by US-CERT, a government organization.

    Terms of use:

     <http://www.us-cert.gov/legal.html>
    

    Revision History

    Oct 18, 2005: Initial release

    -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux)

    iQEVAwUBQ1VB130pj593lg50AQLY6wf+Kq/rI3wxG4rGr+OdVrpl3v+TfTMp6MX3 T0e99ybRSGKeWQCleMQYdBYrS+7UyCa28T1yE8ENe4SuYLPj7ttTqpd0AGxn7f8H +qOY0GnJwXvrWlKCfVtAhjo5JFDxgZQV9P/13MwjcsJrGTtHzhuJ8YZc4RtSMyVX 4nf2s4Nymjd2+jIEX9BnwRIe/E47TRdFLSsza36mhKZLZV1lxLdJYywCZSsQLWNM nL9gohRojR/6wQk8sLjef8LCv2JFu3btsqrrblcTWqfB6GhVR9OSUBhL+b8P/mme jVd9eE0OS5v8rzhaEMiYIMI+pEZEpATj4BnVoLwPkLAoD6ObGJKHkQ== =jjID -----END PGP SIGNATURE----- .


    Hardcore Disassembler / Reverse Engineer Wanted!

    Want to work with IDA and BinDiff? Want to write PoC's and Exploits?

    Your nationality is not important. We will get you a work permit, find an apartment, and offer a relocation compensation package.

    http://secunia.com/hardcore_disassembler_and_reverse_engineer/


    TITLE: CS-MARS Multiple Vulnerabilities

    SECUNIA ADVISORY ID: SA21118

    VERIFY ADVISORY: http://secunia.com/advisories/21118/

    CRITICAL: Moderately critical

    IMPACT: Security Bypass, Exposure of system information, System access

    WHERE:

    From local network

    OPERATING SYSTEM: Cisco Security Monitoring, Analysis and Response System (CS-MARS) 4.x http://secunia.com/product/6780/

    DESCRIPTION: Multiple vulnerabilities have been reported in CS-MARS, which can be exploited by malicious, local users to bypass certain security restrictions and malicious people to gain knowledge of system information and compromise a vulnerable system.

    2) The included JBoss web application server is also affected by an information disclosure weakness.

    CS-MARS also ships with an Oracle database containing several default Oracle accounts with well-known passwords.

    SOLUTION: Update to version 4.2.1 or later.

    PROVIDED AND/OR DISCOVERED BY: 1+2) Jon Hart 3) Reported by the vendor.

    ORIGINAL ADVISORY: http://www.cisco.com/warp/public/707/cisco-sa-20060719-mars.shtml

    OTHER REFERENCES: SA15746: http://secunia.com/advisories/15746/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    .

    The vulnerability is caused due to a boundary error in the handling of Back Orifice packets.

    Alternatively, disable the Back Orifice pre-processor

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-200607-0506",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "cs-mars",
            "scope": "eq",
            "trust": 2.2,
            "vendor": "cisco",
            "version": "4.1.5"
          },
          {
            "model": "cs-mars",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "cisco",
            "version": "4.1"
          },
          {
            "model": "cs-mars",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "cisco",
            "version": "4.1.3"
          },
          {
            "model": "cs-mars",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "cisco",
            "version": "4.1.2"
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "freebsd",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "suse linux",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "snort",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sourcefire",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ubuntu",
            "version": null
          },
          {
            "model": "security monitoring, analysis and response system",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "4.2.1"
          },
          {
            "model": "networks contivity vpn switch",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "nortel",
            "version": "20004.1.3"
          },
          {
            "model": "networks contivity vpn switch",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "nortel",
            "version": "20004.1.2"
          },
          {
            "model": "networks contivity vpn switch",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "nortel",
            "version": "20004.1"
          },
          {
            "model": "cs-mars",
            "scope": "ne",
            "trust": 0.6,
            "vendor": "cisco",
            "version": "4.2.1"
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "2.4.2"
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "2.4.1"
          },
          {
            "model": "project snort",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snort",
            "version": "2.4.0"
          },
          {
            "model": "networks threat protection system intrusion sensor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "4.1"
          },
          {
            "model": "networks threat protection system defense center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "4.1"
          },
          {
            "model": "project snort",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "snort",
            "version": "2.4.3"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "db": "BID",
            "id": "19077"
          },
          {
            "db": "BID",
            "id": "19071"
          },
          {
            "db": "BID",
            "id": "15131"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002837"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-3734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-291"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:cs-mars:4.1.5:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:cs-mars:4.1.2:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:cs-mars:4.1.3:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:cs-mars:4.1:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-3734"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "These issues were disclosed by the vendor.",
        "sources": [
          {
            "db": "BID",
            "id": "19077"
          },
          {
            "db": "BID",
            "id": "19071"
          }
        ],
        "trust": 0.6
      },
      "cve": "CVE-2006-3734",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "LOW",
                "accessVector": "LOCAL",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.2,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 3.9,
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "obtainAllPrivilege": true,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "HIGH",
                "trust": 1.0,
                "userInteractionRequired": false,
                "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "Low",
                "accessVector": "Local",
                "authentication": "None",
                "author": "NVD",
                "availabilityImpact": "Complete",
                "baseScore": 7.2,
                "confidentialityImpact": "Complete",
                "exploitabilityScore": null,
                "id": "CVE-2006-3734",
                "impactScore": null,
                "integrityImpact": "Complete",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "High",
                "trust": 0.8,
                "userInteractionRequired": null,
                "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "LOCAL",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.2,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 3.9,
                "id": "VHN-19842",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:L/AC:L/AU:N/C:C/I:C/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2006-3734",
                "trust": 1.8,
                "value": "HIGH"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#175500",
                "trust": 0.8,
                "value": "31.05"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200607-291",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-19842",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "db": "VULHUB",
            "id": "VHN-19842"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002837"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-3734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-291"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple unspecified vulnerabilities in the Command Line Interface (CLI) for Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.1, allow local CS-MARS administrators to execute arbitrary commands as root. A buffer overflow exists in the Snort Back Orifice preprocessor that may allow a remote, unauthenticated attacker to execute arbitrary code, possibly with elevated privileges. This may facilitate a remote compromise of affected computers. \nCisco has released version 4.2.1 to address these issues; prior versions are reported vulnerable. Snort is susceptible to a remote buffer overflow vulnerability. This issue is due to a failure of the application to securely copy network-derived data into sensitive process buffers. The specific issue exists in the Back Orifice preprocessor. This may facilitate unauthorized access or privilege escalation. \nDue to the nature of this issue, attackers may exploit it by sending a single UDP packet with a potentially spoofed source address to an arbitrary destination address and port. As long as the application can sniff the packet, it may be exploited. These aspects of this issue may aid attackers in bypassing firewalls in order to compromise a wider number of computers. \nReportedly, this issue is difficult to reliably exploit across differing operating systems and compiler versions. Failed exploit attempts likely result in crashing the application, thereby disabling detection of other attacks. \nSnort versions 2.4.0 through 2.4.2 are affected by this issue. Other versions may also be affected, but this has not been confirmed. The CS-MARS CLI is a restricted shell environment that allows authenticated administrators to perform system maintenance tasks. \n-----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n\n                     National Cyber Alert System\n\n               Technical Cyber Security Alert TA05-291A\n\n\nSnort Back Orifice Preprocessor Buffer Overflow\n\n   Original release date: October 18, 2005\n   Last revised: --\n   Source: US-CERT\n\n\nSystems Affected\n\n     * Snort versions 2.4.0 to 2.4.2\n     * Sourcefire Intrusion Sensors\n\n   Other products that use Snort or Snort components may be affected. \n\n\nI. Description\n\n   Snort is a widely-deployed, open-source network intrusion detection\n   system (IDS). Snort and its components are used in other IDS\n   products, notably Sourcefire Intrusion Sensors, and Snort is\n   included with a number of operating system distributions. \n\n   Snort preprocessors are modular plugins that extend functionality\n   by operating on packets before the detection engine is run. The ping detection code does\n   not adequately limit the amount of data that is read from the\n   packet into a fixed-length buffer, thus creating the potential for\n   a buffer overflow. \n\n   The vulnerable code will process any UDP packet that is not\n   destined to or sourced from the default Back Orifice port\n   (31337/udp). An attacker could exploit this vulnerability by\n   sending a specially crafted UDP packet to a host or network\n   monitored by Snort. \n\n   US-CERT is tracking this vulnerability as VU#175500. Further\n   information is available in an advisory from Internet Security\n   Systems (ISS). \n\n\nII. Snort typically runs with root or\n   SYSTEM privileges, so an attacker could take complete control of a\n   vulnerable system. An attacker does not need to target a Snort\n   sensor directly; the attacker can target any host or network\n   monitored by Snort. \n\n\nIII. Solution\n\nUpgrade\n\n   Sourcefire has released Snort 2.4.3 which is available from the\n   Snort download site. For information about other vendors, please\n   see the Systems Affected section of VU#175500. \n\nDisable Back Orifice Preprocessor\n\n   To disable the Back Orifice preprocessor, comment out the line that\n   loads the preprocessor in the Snort configuration file (typically\n   /etc/snort.conf on UNIX and Linux systems):\n\n     [/etc/snort.conf]\n     ... \n     #preprocessor bo\n     ... \n   \n   Restart Snort for the change to take effect. \n\nRestrict Outbound Traffic\n\n   Consider preventing Snort sensors from initiating outbound\n   connections and restricting outbound traffic to only those hosts\n   and networks that have legitimate requirements to communicate with\n   the sensors. While this will not prevent exploitation of the\n   vulnerability, it may make it more difficult for an attacker to\n   access a compromised system or reconnoiter other systems. \n\n\nAppendix A. References\n\n     * US-CERT Vulnerability Note VU#175500 -\n       \u003chttp://www.kb.cert.org/vuls/id/177500\u003e\n\n     * Fixes and Mitigation Instructions Available for Snort Back\n       Orifice Vulnerability -\n       \u003chttp://www.snort.org/pub-bin/snortnews.cgi#99\u003e\n\n     * Snort downloads - \u003chttp://www.snort.org/dl/\u003e\n\n     * Snort 2.4.3 Changelog -\n       \u003chttp://www.snort.org/docs/change_logs/2.4.3/Changelog.txt\u003e\n\n     * Preprocessors -\n       \u003chttp://www.snort.org/docs/snort_htmanuals/htmanual_2.4/\n       node11.html#SECTION00310000000000000000\u003e\n\n     * Snort Back Orifice Parsing Remote Code Execution -\n       \u003chttp://xforce.iss.net/xforce/alerts/id/207\u003e\n\n\n ____________________________________________________________________\n\n   This vulnerability was researched and reported by Internet Security\n   Systems (ISS). \n ____________________________________________________________________\n\n   The most recent version of this document can be found at:\n\n     \u003chttp://www.us-cert.gov/cas/techalerts/TA05-291A.html\u003e\n ____________________________________________________________________\n\n   Feedback can be directed to US-CERT Technical Staff. Please send\n   email to \u003ccert@cert.org\u003e with \"TA05-291A Feedback VU#175500\" in the\n   subject. \n ____________________________________________________________________\n\n   For instructions on subscribing to or unsubscribing from this\n   mailing list, visit \u003chttp://www.us-cert.gov/cas/signup.html\u003e. \n ____________________________________________________________________\n\n   Produced 2005 by US-CERT, a government organization. \n\n   Terms of use:\n\n     \u003chttp://www.us-cert.gov/legal.html\u003e\n ____________________________________________________________________\n\n\nRevision History\n\n   Oct 18, 2005: Initial release\n\n\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.2.1 (GNU/Linux)\n\niQEVAwUBQ1VB130pj593lg50AQLY6wf+Kq/rI3wxG4rGr+OdVrpl3v+TfTMp6MX3\nT0e99ybRSGKeWQCleMQYdBYrS+7UyCa28T1yE8ENe4SuYLPj7ttTqpd0AGxn7f8H\n+qOY0GnJwXvrWlKCfVtAhjo5JFDxgZQV9P/13MwjcsJrGTtHzhuJ8YZc4RtSMyVX\n4nf2s4Nymjd2+jIEX9BnwRIe/E47TRdFLSsza36mhKZLZV1lxLdJYywCZSsQLWNM\nnL9gohRojR/6wQk8sLjef8LCv2JFu3btsqrrblcTWqfB6GhVR9OSUBhL+b8P/mme\njVd9eE0OS5v8rzhaEMiYIMI+pEZEpATj4BnVoLwPkLAoD6ObGJKHkQ==\n=jjID\n-----END PGP SIGNATURE-----\n. \n\n----------------------------------------------------------------------\n\nHardcore Disassembler / Reverse Engineer Wanted!\n\nWant to work with IDA and BinDiff?\nWant to write PoC\u0027s and Exploits?\n\nYour nationality is not important. \nWe will get you a work permit, find an apartment, and offer a\nrelocation compensation package. \n\nhttp://secunia.com/hardcore_disassembler_and_reverse_engineer/\n\n----------------------------------------------------------------------\n\nTITLE:\nCS-MARS Multiple Vulnerabilities\n\nSECUNIA ADVISORY ID:\nSA21118\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/21118/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nSecurity Bypass, Exposure of system information, System access\n\nWHERE:\n\u003eFrom local network\n\nOPERATING SYSTEM:\nCisco Security Monitoring, Analysis and Response System (CS-MARS) 4.x\nhttp://secunia.com/product/6780/\n\nDESCRIPTION:\nMultiple vulnerabilities have been reported in CS-MARS, which can be\nexploited by malicious, local users to bypass certain security\nrestrictions and malicious people to gain knowledge of system\ninformation and compromise a vulnerable system. \n\n2) The included JBoss web application server is also affected by an\ninformation disclosure weakness. \n\nCS-MARS also ships with an Oracle database containing several default\nOracle accounts with well-known passwords. \n\nSOLUTION:\nUpdate to version 4.2.1 or later. \n\nPROVIDED AND/OR DISCOVERED BY:\n1+2) Jon Hart\n3) Reported by the vendor. \n\nORIGINAL ADVISORY:\nhttp://www.cisco.com/warp/public/707/cisco-sa-20060719-mars.shtml\n\nOTHER REFERENCES:\nSA15746:\nhttp://secunia.com/advisories/15746/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n. \n\nThe vulnerability is caused due to a boundary error in the handling\nof Back Orifice packets. \n\nAlternatively, disable the Back Orifice pre-processor",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-3734"
          },
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002837"
          },
          {
            "db": "BID",
            "id": "19077"
          },
          {
            "db": "BID",
            "id": "19071"
          },
          {
            "db": "BID",
            "id": "15131"
          },
          {
            "db": "VULHUB",
            "id": "VHN-19842"
          },
          {
            "db": "PACKETSTORM",
            "id": "40869"
          },
          {
            "db": "PACKETSTORM",
            "id": "48383"
          },
          {
            "db": "PACKETSTORM",
            "id": "40766"
          }
        ],
        "trust": 3.51
      },
      "exploit_availability": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "reference": "https://www.scap.org.cn/vuln/vhn-19842",
            "trust": 0.1,
            "type": "unknown"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-19842"
          }
        ]
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2006-3734",
            "trust": 2.5
          },
          {
            "db": "BID",
            "id": "19071",
            "trust": 2.0
          },
          {
            "db": "BID",
            "id": "19077",
            "trust": 2.0
          },
          {
            "db": "SECUNIA",
            "id": "21118",
            "trust": 1.8
          },
          {
            "db": "SECTRACK",
            "id": "1016537",
            "trust": 1.7
          },
          {
            "db": "VUPEN",
            "id": "ADV-2006-2887",
            "trust": 1.7
          },
          {
            "db": "CERT/CC",
            "id": "VU#175500",
            "trust": 1.2
          },
          {
            "db": "SECUNIA",
            "id": "17220",
            "trust": 1.0
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002837",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-291",
            "trust": 0.7
          },
          {
            "db": "XF",
            "id": "27812",
            "trust": 0.6
          },
          {
            "db": "CISCO",
            "id": "20060719 MULTIPLE VULNERABILITIES IN CISCO SECURITY MONITORING, ANALYSIS AND RESPONSE SYSTEM (CS-MARS)",
            "trust": 0.6
          },
          {
            "db": "USCERT",
            "id": "TA05-291A",
            "trust": 0.4
          },
          {
            "db": "BID",
            "id": "15131",
            "trust": 0.3
          },
          {
            "db": "EXPLOIT-DB",
            "id": "2048",
            "trust": 0.1
          },
          {
            "db": "SEEBUG",
            "id": "SSVID-63733",
            "trust": 0.1
          },
          {
            "db": "VULHUB",
            "id": "VHN-19842",
            "trust": 0.1
          },
          {
            "db": "CERT/CC",
            "id": "VU#177500",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "40869",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "48383",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "40766",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "db": "VULHUB",
            "id": "VHN-19842"
          },
          {
            "db": "BID",
            "id": "19077"
          },
          {
            "db": "BID",
            "id": "19071"
          },
          {
            "db": "BID",
            "id": "15131"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002837"
          },
          {
            "db": "PACKETSTORM",
            "id": "40869"
          },
          {
            "db": "PACKETSTORM",
            "id": "48383"
          },
          {
            "db": "PACKETSTORM",
            "id": "40766"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-3734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-291"
          }
        ]
      },
      "id": "VAR-200607-0506",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-19842"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2023-12-18T11:07:54.504000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "cisco-sa-20060719-mars",
            "trust": 0.8,
            "url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20060719-mars"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002837"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-3734"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.4,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20060719-mars.shtml"
          },
          {
            "trust": 1.7,
            "url": "http://www.securityfocus.com/bid/19071"
          },
          {
            "trust": 1.7,
            "url": "http://www.securityfocus.com/bid/19077"
          },
          {
            "trust": 1.7,
            "url": "http://securitytracker.com/id?1016537"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/21118"
          },
          {
            "trust": 1.2,
            "url": "http://xforce.iss.net/xforce/alerts/id/207"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2006/2887"
          },
          {
            "trust": 1.1,
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27812"
          },
          {
            "trust": 0.9,
            "url": "http://www.snort.org/pub-bin/snortnews.cgi#99"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17220/"
          },
          {
            "trust": 0.8,
            "url": "http://www.snort.org/docs/change_logs/2.4.3/changelog.txt"
          },
          {
            "trust": 0.8,
            "url": "http://www.snort.org/docs/snort_htmanuals/htmanual_2.4/node11.html#section00310000000000000000"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-3734"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2006-3734"
          },
          {
            "trust": 0.6,
            "url": "http://www.cisco.com/en/us/products/sw/voicesw/ps4625/index.html"
          },
          {
            "trust": 0.6,
            "url": "http://www.cisco.com/en/us/products/ps6241/index.html"
          },
          {
            "trust": 0.6,
            "url": "/archive/1/440580"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2006/2887"
          },
          {
            "trust": 0.6,
            "url": "http://xforce.iss.net/xforce/xfdb/27812"
          },
          {
            "trust": 0.4,
            "url": "http://www.kb.cert.org/vuls/id/175500"
          },
          {
            "trust": 0.3,
            "url": "http://www.snort.org/rules/advisories/snort_update_20051018.html"
          },
          {
            "trust": 0.3,
            "url": "http://www.snort.org/"
          },
          {
            "trust": 0.3,
            "url": "http://www.snort.org/pub-bin/snortnews.cgi"
          },
          {
            "trust": 0.3,
            "url": "http://www.us-cert.gov/cas/techalerts/ta05-291a.html"
          },
          {
            "trust": 0.3,
            "url": "http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=bltndetail\u0026documentoid=362187\u0026renditionid="
          },
          {
            "trust": 0.2,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.2,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.2,
            "url": "http://secunia.com/about_secunia_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://xforce.iss.net/xforce/alerts/id/207\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.snort.org/docs/snort_htmanuals/htmanual_2.4/"
          },
          {
            "trust": 0.1,
            "url": "http://www.us-cert.gov/cas/techalerts/ta05-291a.html\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.snort.org/docs/change_logs/2.4.3/changelog.txt\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.snort.org/dl/\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.us-cert.gov/cas/signup.html\u003e."
          },
          {
            "trust": 0.1,
            "url": "http://www.us-cert.gov/legal.html\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.snort.org/pub-bin/snortnews.cgi#99\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://www.kb.cert.org/vuls/id/177500\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6780/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/15746/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/hardcore_disassembler_and_reverse_engineer/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/21118/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/5691/"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "db": "VULHUB",
            "id": "VHN-19842"
          },
          {
            "db": "BID",
            "id": "19077"
          },
          {
            "db": "BID",
            "id": "19071"
          },
          {
            "db": "BID",
            "id": "15131"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002837"
          },
          {
            "db": "PACKETSTORM",
            "id": "40869"
          },
          {
            "db": "PACKETSTORM",
            "id": "48383"
          },
          {
            "db": "PACKETSTORM",
            "id": "40766"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-3734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-291"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "db": "VULHUB",
            "id": "VHN-19842"
          },
          {
            "db": "BID",
            "id": "19077"
          },
          {
            "db": "BID",
            "id": "19071"
          },
          {
            "db": "BID",
            "id": "15131"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-002837"
          },
          {
            "db": "PACKETSTORM",
            "id": "40869"
          },
          {
            "db": "PACKETSTORM",
            "id": "48383"
          },
          {
            "db": "PACKETSTORM",
            "id": "40766"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-3734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-291"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2005-10-18T00:00:00",
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "date": "2006-07-21T00:00:00",
            "db": "VULHUB",
            "id": "VHN-19842"
          },
          {
            "date": "2006-07-19T00:00:00",
            "db": "BID",
            "id": "19077"
          },
          {
            "date": "2006-07-19T00:00:00",
            "db": "BID",
            "id": "19071"
          },
          {
            "date": "2005-10-18T00:00:00",
            "db": "BID",
            "id": "15131"
          },
          {
            "date": "2012-12-20T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2006-002837"
          },
          {
            "date": "2005-10-24T23:41:37",
            "db": "PACKETSTORM",
            "id": "40869"
          },
          {
            "date": "2006-07-20T08:48:26",
            "db": "PACKETSTORM",
            "id": "48383"
          },
          {
            "date": "2005-10-18T22:10:31",
            "db": "PACKETSTORM",
            "id": "40766"
          },
          {
            "date": "2006-07-21T14:03:00",
            "db": "NVD",
            "id": "CVE-2006-3734"
          },
          {
            "date": "2006-07-21T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200607-291"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2005-11-11T00:00:00",
            "db": "CERT/CC",
            "id": "VU#175500"
          },
          {
            "date": "2017-07-20T00:00:00",
            "db": "VULHUB",
            "id": "VHN-19842"
          },
          {
            "date": "2006-07-20T18:27:00",
            "db": "BID",
            "id": "19077"
          },
          {
            "date": "2006-07-20T18:52:00",
            "db": "BID",
            "id": "19071"
          },
          {
            "date": "2005-10-18T00:00:00",
            "db": "BID",
            "id": "15131"
          },
          {
            "date": "2012-12-20T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2006-002837"
          },
          {
            "date": "2017-07-20T01:32:32.210000",
            "db": "NVD",
            "id": "CVE-2006-3734"
          },
          {
            "date": "2006-08-09T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200607-291"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "BID",
            "id": "19077"
          },
          {
            "db": "PACKETSTORM",
            "id": "48383"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-291"
          }
        ],
        "trust": 1.0
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Snort Back Orifice preprocessor buffer overflow",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#175500"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Design Error",
        "sources": [
          {
            "db": "BID",
            "id": "19077"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200607-291"
          }
        ],
        "trust": 0.9
      }
    }

    CVE-2023-20246 (GCVE-0-2023-20246)

    Vulnerability from nvd – Published: 2023-11-01 17:13 – Updated: 2024-09-06 16:34
    VLAI
    Summary
    Multiple Cisco products are affected by a vulnerability in Snort access control policies that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. This vulnerability is due to a logic error that occurs when the access control policies are being populated. An attacker could exploit this vulnerability by establishing a connection to an affected device. A successful exploit could allow the attacker to bypass configured access control rules on the affected system.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-290 - Authentication Bypass by Spoofing
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Firepower Threat Defense Software Affected: 7.0.0
    Affected: 7.0.0.1
    Affected: 7.0.1
    Affected: 7.0.1.1
    Affected: 7.0.2
    Affected: 7.0.2.1
    Affected: 7.0.3
    Affected: 7.0.4
    Affected: 7.0.5
    Affected: 7.1.0
    Affected: 7.1.0.1
    Affected: 7.1.0.2
    Affected: 7.1.0.3
    Affected: 7.2.0
    Affected: 7.2.0.1
    Affected: 7.2.1
    Affected: 7.2.2
    Affected: 7.2.3
    Affected: 7.3.0
    Affected: 7.3.1
    Affected: 7.3.1.1
    Create a notification for this product.
    Cisco Cisco Umbrella Insights Virtual Appliance Affected: N/A
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:05:36.677Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "cisco-sa-ftd-snort3acp-bypass-3bdR2BEh",
                "tags": [
                  "x_transferred"
                ],
                "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort3acp-bypass-3bdR2BEh"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-20246",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-06T16:34:21.802689Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-06T16:34:39.970Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Firepower Threat Defense Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.0.0"
                },
                {
                  "status": "affected",
                  "version": "7.0.0.1"
                },
                {
                  "status": "affected",
                  "version": "7.0.1"
                },
                {
                  "status": "affected",
                  "version": "7.0.1.1"
                },
                {
                  "status": "affected",
                  "version": "7.0.2"
                },
                {
                  "status": "affected",
                  "version": "7.0.2.1"
                },
                {
                  "status": "affected",
                  "version": "7.0.3"
                },
                {
                  "status": "affected",
                  "version": "7.0.4"
                },
                {
                  "status": "affected",
                  "version": "7.0.5"
                },
                {
                  "status": "affected",
                  "version": "7.1.0"
                },
                {
                  "status": "affected",
                  "version": "7.1.0.1"
                },
                {
                  "status": "affected",
                  "version": "7.1.0.2"
                },
                {
                  "status": "affected",
                  "version": "7.1.0.3"
                },
                {
                  "status": "affected",
                  "version": "7.2.0"
                },
                {
                  "status": "affected",
                  "version": "7.2.0.1"
                },
                {
                  "status": "affected",
                  "version": "7.2.1"
                },
                {
                  "status": "affected",
                  "version": "7.2.2"
                },
                {
                  "status": "affected",
                  "version": "7.2.3"
                },
                {
                  "status": "affected",
                  "version": "7.3.0"
                },
                {
                  "status": "affected",
                  "version": "7.3.1"
                },
                {
                  "status": "affected",
                  "version": "7.3.1.1"
                }
              ]
            },
            {
              "product": "Cisco Umbrella Insights Virtual Appliance",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "N/A"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple Cisco products are affected by a vulnerability in Snort access control policies that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. \r\n\r This vulnerability is due to a logic error that occurs when the access control policies are being populated. An attacker could exploit this vulnerability by establishing a connection to an affected device. A successful exploit could allow the attacker to bypass configured access control rules on the affected system."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-290",
                  "description": "Authentication Bypass by Spoofing",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-02-06T20:07:44.577Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ftd-snort3acp-bypass-3bdR2BEh",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort3acp-bypass-3bdR2BEh"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ftd-snort3acp-bypass-3bdR2BEh",
            "defects": [
              "CSCwe15280",
              "CSCwe83859"
            ],
            "discovery": "INTERNAL"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2023-20246",
        "datePublished": "2023-11-01T17:13:58.231Z",
        "dateReserved": "2022-10-27T18:47:50.371Z",
        "dateUpdated": "2024-09-06T16:34:39.970Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-40116 (GCVE-0-2021-40116)

    Vulnerability from nvd – Published: 2021-10-27 18:56 – Updated: 2024-11-07 21:45
    VLAI
    Title
    Multiple Cisco Products Snort Rule Denial of Service Vulnerability
    Summary
    Multiple Cisco products are affected by a vulnerability in Snort rules that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.The vulnerability is due to improper handling of the Block with Reset or Interactive Block with Reset actions if a rule is configured without proper constraints. An attacker could exploit this vulnerability by sending a crafted IP packet to the affected device. A successful exploit could allow the attacker to cause through traffic to be dropped. Note: Only products with Snort3 configured and either a rule with Block with Reset or Interactive Block with Reset actions configured are vulnerable. Products configured with Snort2 are not vulnerable.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://tools.cisco.com/security/center/content/C… vendor-advisoryx_refsource_CISCO
    Impacted products
    Date Public
    2021-10-27 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T02:27:31.552Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20211027 Multiple Cisco Products Snort Rule Denial of Service Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CISCO",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-RywH7ezM"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-40116",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-07T21:44:24.760230Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-07T21:45:31.681Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Firepower Threat Defense Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-10-27T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple Cisco products are affected by a vulnerability in Snort rules that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.The vulnerability is due to improper handling of the Block with Reset or Interactive Block with Reset actions if a rule is configured without proper constraints. An attacker could exploit this vulnerability by sending a crafted IP packet to the affected device. A successful exploit could allow the attacker to cause through traffic to be dropped. Note: Only products with Snort3 configured and either a rule with Block with Reset or Interactive Block with Reset actions configured are vulnerable. Products configured with Snort2 are not vulnerable."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-241",
                  "description": "CWE-241",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-10-27T18:56:42.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20211027 Multiple Cisco Products Snort Rule Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory",
                "x_refsource_CISCO"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-RywH7ezM"
            }
          ],
          "source": {
            "advisory": "cisco-sa-snort-dos-RywH7ezM",
            "defect": [
              [
                "CSCvy66065"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Multiple Cisco Products Snort Rule Denial of Service Vulnerability",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@cisco.com",
              "DATE_PUBLIC": "2021-10-27T16:00:00",
              "ID": "CVE-2021-40116",
              "STATE": "PUBLIC",
              "TITLE": "Multiple Cisco Products Snort Rule Denial of Service Vulnerability"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Cisco Firepower Threat Defense Software",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Cisco"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple Cisco products are affected by a vulnerability in Snort rules that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.The vulnerability is due to improper handling of the Block with Reset or Interactive Block with Reset actions if a rule is configured without proper constraints. An attacker could exploit this vulnerability by sending a crafted IP packet to the affected device. A successful exploit could allow the attacker to cause through traffic to be dropped. Note: Only products with Snort3 configured and either a rule with Block with Reset or Interactive Block with Reset actions configured are vulnerable. Products configured with Snort2 are not vulnerable."
                }
              ]
            },
            "exploit": [
              {
                "lang": "en",
                "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
              }
            ],
            "impact": {
              "cvss": {
                "baseScore": "8.6",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.0"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-241"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20211027 Multiple Cisco Products Snort Rule Denial of Service Vulnerability",
                  "refsource": "CISCO",
                  "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-RywH7ezM"
                }
              ]
            },
            "source": {
              "advisory": "cisco-sa-snort-dos-RywH7ezM",
              "defect": [
                [
                  "CSCvy66065"
                ]
              ],
              "discovery": "INTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-40116",
        "datePublished": "2021-10-27T18:56:42.934Z",
        "dateReserved": "2021-08-25T00:00:00.000Z",
        "dateUpdated": "2024-11-07T21:45:31.681Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-40114 (GCVE-0-2021-40114)

    Vulnerability from nvd – Published: 2021-10-27 18:56 – Updated: 2024-11-07 21:43
    VLAI
    Title
    Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability
    Summary
    Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Date Public
    2021-10-27 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T02:27:31.905Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20211027 Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU"
              },
              {
                "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
                "tags": [
                  "mailing-list",
                  "x_transferred"
                ],
                "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
              },
              {
                "name": "DSA-5354",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://www.debian.org/security/2023/dsa-5354"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-40114",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-07T21:39:43.541348Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-07T21:43:47.611Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Firepower Threat Defense Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-10-27T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 6.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-770",
                  "description": "CWE-770",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-02-19T00:00:00.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20211027 Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU"
            },
            {
              "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
              "tags": [
                "mailing-list"
              ],
              "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
            },
            {
              "name": "DSA-5354",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.debian.org/security/2023/dsa-5354"
            }
          ],
          "source": {
            "advisory": "cisco-sa-snort-dos-s2R7W9UU",
            "defect": [
              [
                "CSCvt57503",
                "CSCvx29001"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-40114",
        "datePublished": "2021-10-27T18:56:37.380Z",
        "dateReserved": "2021-08-25T00:00:00.000Z",
        "dateUpdated": "2024-11-07T21:43:47.611Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-1495 (GCVE-0-2021-1495)

    Vulnerability from nvd – Published: 2021-04-29 17:31 – Updated: 2024-11-08 23:22
    VLAI
    Title
    Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability
    Summary
    Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of specific HTTP header parameters. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured file policy for HTTP packets and deliver a malicious payload.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • NA
    Assigner
    Impacted products
    Date Public
    2021-04-28 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:11:17.563Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20210428 Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-http-fp-bp-KfDdcQhc"
              },
              {
                "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
                "tags": [
                  "mailing-list",
                  "x_transferred"
                ],
                "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
              },
              {
                "name": "DSA-5354",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://www.debian.org/security/2023/dsa-5354"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1495",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-08T20:02:18.238315Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-08T23:22:35.276Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Firepower Threat Defense Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-04-28T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of specific HTTP header parameters. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured file policy for HTTP packets and deliver a malicious payload."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "NA",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-02-19T00:00:00.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20210428 Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-http-fp-bp-KfDdcQhc"
            },
            {
              "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
              "tags": [
                "mailing-list"
              ],
              "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
            },
            {
              "name": "DSA-5354",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.debian.org/security/2023/dsa-5354"
            }
          ],
          "source": {
            "advisory": "cisco-sa-http-fp-bp-KfDdcQhc",
            "defect": [
              [
                "CSCvw19272",
                "CSCvw59055"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-1495",
        "datePublished": "2021-04-29T17:31:20.004Z",
        "dateReserved": "2020-11-13T00:00:00.000Z",
        "dateUpdated": "2024-11-08T23:22:35.276Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-1236 (GCVE-0-2021-1236)

    Vulnerability from nvd – Published: 2021-01-13 21:17 – Updated: 2024-11-12 20:48
    VLAI
    Title
    Multiple Cisco Products Snort Application Detection Engine Policy Bypass Vulnerability
    Summary
    Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. The vulnerability is due to a flaw in the detection algorithm. An attacker could exploit this vulnerability by sending crafted packets that would flow through an affected system. A successful exploit could allow the attacker to bypass the configured policies and deliver a malicious payload to the protected network.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Date Public
    2021-01-13 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:02:56.434Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20210113 Multiple Cisco Products Snort Application Detection Engine Policy Bypass Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-app-bypass-cSBYCATq"
              },
              {
                "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
                "tags": [
                  "mailing-list",
                  "x_transferred"
                ],
                "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
              },
              {
                "name": "DSA-5354",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://www.debian.org/security/2023/dsa-5354"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1236",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-08T20:55:08.338945Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-12T20:48:23.581Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Firepower Threat Defense Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-01-13T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. The vulnerability is due to a flaw in the detection algorithm. An attacker could exploit this vulnerability by sending crafted packets that would flow through an affected system. A successful exploit could allow the attacker to bypass the configured policies and deliver a malicious payload to the protected network."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N",
                "version": "3.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-670",
                  "description": "CWE-670",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-02-19T00:00:00.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20210113 Multiple Cisco Products Snort Application Detection Engine Policy Bypass Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-app-bypass-cSBYCATq"
            },
            {
              "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
              "tags": [
                "mailing-list"
              ],
              "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
            },
            {
              "name": "DSA-5354",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.debian.org/security/2023/dsa-5354"
            }
          ],
          "source": {
            "advisory": "cisco-sa-snort-app-bypass-cSBYCATq",
            "defect": [
              [
                "CSCvs85467",
                "CSCvu21318"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Multiple Cisco Products Snort Application Detection Engine Policy Bypass Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-1236",
        "datePublished": "2021-01-13T21:17:03.406Z",
        "dateReserved": "2020-11-13T00:00:00.000Z",
        "dateUpdated": "2024-11-12T20:48:23.581Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-1224 (GCVE-0-2021-1224)

    Vulnerability from nvd – Published: 2021-01-13 21:16 – Updated: 2024-11-12 20:48
    VLAI
    Title
    Multiple Cisco Products Snort TCP Fast Open File Policy Bypass Vulnerability
    Summary
    Multiple Cisco products are affected by a vulnerability with TCP Fast Open (TFO) when used in conjunction with the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect detection of the HTTP payload if it is contained at least partially within the TFO connection handshake. An attacker could exploit this vulnerability by sending crafted TFO packets with an HTTP payload through an affected device. A successful exploit could allow the attacker to bypass configured file policy for HTTP packets and deliver a malicious payload.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Date Public
    2021-01-13 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:02:56.126Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20210113 Multiple Cisco Products Snort TCP Fast Open File Policy Bypass Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-tfo-bypass-MmzZrtes"
              },
              {
                "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
                "tags": [
                  "mailing-list",
                  "x_transferred"
                ],
                "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
              },
              {
                "name": "DSA-5354",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://www.debian.org/security/2023/dsa-5354"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1224",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-08T20:06:11.617988Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-12T20:48:38.628Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Firepower Threat Defense Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-01-13T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple Cisco products are affected by a vulnerability with TCP Fast Open (TFO) when used in conjunction with the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect detection of the HTTP payload if it is contained at least partially within the TFO connection handshake. An attacker could exploit this vulnerability by sending crafted TFO packets with an HTTP payload through an affected device. A successful exploit could allow the attacker to bypass configured file policy for HTTP packets and deliver a malicious payload."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-693",
                  "description": "CWE-693",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-02-19T00:00:00.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20210113 Multiple Cisco Products Snort TCP Fast Open File Policy Bypass Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-tfo-bypass-MmzZrtes"
            },
            {
              "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
              "tags": [
                "mailing-list"
              ],
              "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
            },
            {
              "name": "DSA-5354",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.debian.org/security/2023/dsa-5354"
            }
          ],
          "source": {
            "advisory": "cisco-sa-snort-tfo-bypass-MmzZrtes",
            "defect": [
              [
                "CSCvt43136",
                "CSCvu88532"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Multiple Cisco Products Snort TCP Fast Open File Policy Bypass Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-1224",
        "datePublished": "2021-01-13T21:16:53.450Z",
        "dateReserved": "2020-11-13T00:00:00.000Z",
        "dateUpdated": "2024-11-12T20:48:38.628Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-1223 (GCVE-0-2021-1223)

    Vulnerability from nvd – Published: 2021-01-13 21:16 – Updated: 2024-11-12 20:48
    VLAI
    Title
    Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability
    Summary
    Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of an HTTP range header. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass configured file policy for HTTP packets and deliver a malicious payload.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Date Public
    2021-01-13 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:02:56.174Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20210113 Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-filepolbypass-67DEwMe2"
              },
              {
                "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
                "tags": [
                  "mailing-list",
                  "x_transferred"
                ],
                "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
              },
              {
                "name": "DSA-5354",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://www.debian.org/security/2023/dsa-5354"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1223",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-08T20:06:16.123523Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-12T20:48:44.825Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Firepower Threat Defense Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-01-13T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of an HTTP range header. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass configured file policy for HTTP packets and deliver a malicious payload."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
                "version": "3.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-693",
                  "description": "CWE-693",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-02-19T00:00:00.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20210113 Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-filepolbypass-67DEwMe2"
            },
            {
              "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
              "tags": [
                "mailing-list"
              ],
              "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
            },
            {
              "name": "DSA-5354",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.debian.org/security/2023/dsa-5354"
            }
          ],
          "source": {
            "advisory": "cisco-sa-snort-filepolbypass-67DEwMe2",
            "defect": [
              [
                "CSCvs71969",
                "CSCvu18635"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-1223",
        "datePublished": "2021-01-13T21:16:48.777Z",
        "dateReserved": "2020-11-13T00:00:00.000Z",
        "dateUpdated": "2024-11-12T20:48:44.825Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-3299 (GCVE-0-2020-3299)

    Vulnerability from nvd – Published: 2020-10-21 18:25 – Updated: 2024-11-13 17:50
    VLAI
    Title
    Multiple Cisco Products SNORT HTTP Detection Engine File Policy Bypass Vulnerability
    Summary
    Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured File Policy for HTTP. The vulnerability is due to incorrect detection of modified HTTP packets used in chunked responses. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured File Policy for HTTP packets and deliver a malicious payload.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Date Public
    2020-10-21 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T07:30:57.923Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20201021 Multiple Cisco Products SNORT HTTP Detection Engine File Policy Bypass Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-bypass-3eCfd24j"
              },
              {
                "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
                "tags": [
                  "mailing-list",
                  "x_transferred"
                ],
                "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
              },
              {
                "name": "DSA-5354",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://www.debian.org/security/2023/dsa-5354"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2020-3299",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-13T17:12:30.607418Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-13T17:50:59.312Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Firepower Threat Defense Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2020-10-21T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured File Policy for HTTP. The vulnerability is due to incorrect detection of modified HTTP packets used in chunked responses. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured File Policy for HTTP packets and deliver a malicious payload."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
                "version": "3.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-693",
                  "description": "CWE-693",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-02-19T00:00:00.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20201021 Multiple Cisco Products SNORT HTTP Detection Engine File Policy Bypass Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-bypass-3eCfd24j"
            },
            {
              "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
              "tags": [
                "mailing-list"
              ],
              "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
            },
            {
              "name": "DSA-5354",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.debian.org/security/2023/dsa-5354"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ftd-bypass-3eCfd24j",
            "defect": [
              [
                "CSCvm69545",
                "CSCvq96573"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Multiple Cisco Products SNORT HTTP Detection Engine File Policy Bypass Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2020-3299",
        "datePublished": "2020-10-21T18:25:13.223Z",
        "dateReserved": "2019-12-12T00:00:00.000Z",
        "dateUpdated": "2024-11-13T17:50:59.312Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2016-1417 (GCVE-0-2016-1417)

    Vulnerability from nvd – Published: 2017-01-23 21:00 – Updated: 2024-08-05 22:55
    VLAI
    Summary
    Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse tcapi.dll that is located in the same folder on a remote file share as a pcap file that is being processed.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2016-09-29 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T22:55:14.551Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "1036936",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1036936"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://hyp3rlinx.altervista.org/advisories/SNORT-DLL-HIJACK.txt"
              },
              {
                "name": "93269",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/93269"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/138915/Snort-2.9.7.0-WIN32-DLL-Hijacking.html"
              },
              {
                "name": "20161012 Snort v2.9.7.0-WIN32 DLL Hijack",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/539579/100/0/threaded"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2016-09-29T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse tcapi.dll that is located in the same folder on a remote file share as a pcap file that is being processed."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-09T18:57:01.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "1036936",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1036936"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://hyp3rlinx.altervista.org/advisories/SNORT-DLL-HIJACK.txt"
            },
            {
              "name": "93269",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/93269"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/138915/Snort-2.9.7.0-WIN32-DLL-Hijacking.html"
            },
            {
              "name": "20161012 Snort v2.9.7.0-WIN32 DLL Hijack",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/539579/100/0/threaded"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@cisco.com",
              "ID": "CVE-2016-1417",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse tcapi.dll that is located in the same folder on a remote file share as a pcap file that is being processed."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "1036936",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1036936"
                },
                {
                  "name": "http://hyp3rlinx.altervista.org/advisories/SNORT-DLL-HIJACK.txt",
                  "refsource": "MISC",
                  "url": "http://hyp3rlinx.altervista.org/advisories/SNORT-DLL-HIJACK.txt"
                },
                {
                  "name": "93269",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/93269"
                },
                {
                  "name": "http://packetstormsecurity.com/files/138915/Snort-2.9.7.0-WIN32-DLL-Hijacking.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/138915/Snort-2.9.7.0-WIN32-DLL-Hijacking.html"
                },
                {
                  "name": "20161012 Snort v2.9.7.0-WIN32 DLL Hijack",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/539579/100/0/threaded"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2016-1417",
        "datePublished": "2017-01-23T21:00:00.000Z",
        "dateReserved": "2016-01-04T00:00:00.000Z",
        "dateUpdated": "2024-08-05T22:55:14.551Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20246 (GCVE-0-2023-20246)

    Vulnerability from cvelistv5 – Published: 2023-11-01 17:13 – Updated: 2024-09-06 16:34
    VLAI
    Summary
    Multiple Cisco products are affected by a vulnerability in Snort access control policies that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. This vulnerability is due to a logic error that occurs when the access control policies are being populated. An attacker could exploit this vulnerability by establishing a connection to an affected device. A successful exploit could allow the attacker to bypass configured access control rules on the affected system.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-290 - Authentication Bypass by Spoofing
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Firepower Threat Defense Software Affected: 7.0.0
    Affected: 7.0.0.1
    Affected: 7.0.1
    Affected: 7.0.1.1
    Affected: 7.0.2
    Affected: 7.0.2.1
    Affected: 7.0.3
    Affected: 7.0.4
    Affected: 7.0.5
    Affected: 7.1.0
    Affected: 7.1.0.1
    Affected: 7.1.0.2
    Affected: 7.1.0.3
    Affected: 7.2.0
    Affected: 7.2.0.1
    Affected: 7.2.1
    Affected: 7.2.2
    Affected: 7.2.3
    Affected: 7.3.0
    Affected: 7.3.1
    Affected: 7.3.1.1
    Create a notification for this product.
    Cisco Cisco Umbrella Insights Virtual Appliance Affected: N/A
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:05:36.677Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "cisco-sa-ftd-snort3acp-bypass-3bdR2BEh",
                "tags": [
                  "x_transferred"
                ],
                "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort3acp-bypass-3bdR2BEh"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-20246",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-06T16:34:21.802689Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-06T16:34:39.970Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Firepower Threat Defense Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.0.0"
                },
                {
                  "status": "affected",
                  "version": "7.0.0.1"
                },
                {
                  "status": "affected",
                  "version": "7.0.1"
                },
                {
                  "status": "affected",
                  "version": "7.0.1.1"
                },
                {
                  "status": "affected",
                  "version": "7.0.2"
                },
                {
                  "status": "affected",
                  "version": "7.0.2.1"
                },
                {
                  "status": "affected",
                  "version": "7.0.3"
                },
                {
                  "status": "affected",
                  "version": "7.0.4"
                },
                {
                  "status": "affected",
                  "version": "7.0.5"
                },
                {
                  "status": "affected",
                  "version": "7.1.0"
                },
                {
                  "status": "affected",
                  "version": "7.1.0.1"
                },
                {
                  "status": "affected",
                  "version": "7.1.0.2"
                },
                {
                  "status": "affected",
                  "version": "7.1.0.3"
                },
                {
                  "status": "affected",
                  "version": "7.2.0"
                },
                {
                  "status": "affected",
                  "version": "7.2.0.1"
                },
                {
                  "status": "affected",
                  "version": "7.2.1"
                },
                {
                  "status": "affected",
                  "version": "7.2.2"
                },
                {
                  "status": "affected",
                  "version": "7.2.3"
                },
                {
                  "status": "affected",
                  "version": "7.3.0"
                },
                {
                  "status": "affected",
                  "version": "7.3.1"
                },
                {
                  "status": "affected",
                  "version": "7.3.1.1"
                }
              ]
            },
            {
              "product": "Cisco Umbrella Insights Virtual Appliance",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "N/A"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple Cisco products are affected by a vulnerability in Snort access control policies that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. \r\n\r This vulnerability is due to a logic error that occurs when the access control policies are being populated. An attacker could exploit this vulnerability by establishing a connection to an affected device. A successful exploit could allow the attacker to bypass configured access control rules on the affected system."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-290",
                  "description": "Authentication Bypass by Spoofing",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-02-06T20:07:44.577Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ftd-snort3acp-bypass-3bdR2BEh",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort3acp-bypass-3bdR2BEh"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ftd-snort3acp-bypass-3bdR2BEh",
            "defects": [
              "CSCwe15280",
              "CSCwe83859"
            ],
            "discovery": "INTERNAL"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2023-20246",
        "datePublished": "2023-11-01T17:13:58.231Z",
        "dateReserved": "2022-10-27T18:47:50.371Z",
        "dateUpdated": "2024-09-06T16:34:39.970Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-40116 (GCVE-0-2021-40116)

    Vulnerability from cvelistv5 – Published: 2021-10-27 18:56 – Updated: 2024-11-07 21:45
    VLAI
    Title
    Multiple Cisco Products Snort Rule Denial of Service Vulnerability
    Summary
    Multiple Cisco products are affected by a vulnerability in Snort rules that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.The vulnerability is due to improper handling of the Block with Reset or Interactive Block with Reset actions if a rule is configured without proper constraints. An attacker could exploit this vulnerability by sending a crafted IP packet to the affected device. A successful exploit could allow the attacker to cause through traffic to be dropped. Note: Only products with Snort3 configured and either a rule with Block with Reset or Interactive Block with Reset actions configured are vulnerable. Products configured with Snort2 are not vulnerable.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://tools.cisco.com/security/center/content/C… vendor-advisoryx_refsource_CISCO
    Impacted products
    Date Public
    2021-10-27 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T02:27:31.552Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20211027 Multiple Cisco Products Snort Rule Denial of Service Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CISCO",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-RywH7ezM"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-40116",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-07T21:44:24.760230Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-07T21:45:31.681Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Firepower Threat Defense Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-10-27T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple Cisco products are affected by a vulnerability in Snort rules that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.The vulnerability is due to improper handling of the Block with Reset or Interactive Block with Reset actions if a rule is configured without proper constraints. An attacker could exploit this vulnerability by sending a crafted IP packet to the affected device. A successful exploit could allow the attacker to cause through traffic to be dropped. Note: Only products with Snort3 configured and either a rule with Block with Reset or Interactive Block with Reset actions configured are vulnerable. Products configured with Snort2 are not vulnerable."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-241",
                  "description": "CWE-241",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-10-27T18:56:42.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20211027 Multiple Cisco Products Snort Rule Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory",
                "x_refsource_CISCO"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-RywH7ezM"
            }
          ],
          "source": {
            "advisory": "cisco-sa-snort-dos-RywH7ezM",
            "defect": [
              [
                "CSCvy66065"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Multiple Cisco Products Snort Rule Denial of Service Vulnerability",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@cisco.com",
              "DATE_PUBLIC": "2021-10-27T16:00:00",
              "ID": "CVE-2021-40116",
              "STATE": "PUBLIC",
              "TITLE": "Multiple Cisco Products Snort Rule Denial of Service Vulnerability"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Cisco Firepower Threat Defense Software",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Cisco"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple Cisco products are affected by a vulnerability in Snort rules that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.The vulnerability is due to improper handling of the Block with Reset or Interactive Block with Reset actions if a rule is configured without proper constraints. An attacker could exploit this vulnerability by sending a crafted IP packet to the affected device. A successful exploit could allow the attacker to cause through traffic to be dropped. Note: Only products with Snort3 configured and either a rule with Block with Reset or Interactive Block with Reset actions configured are vulnerable. Products configured with Snort2 are not vulnerable."
                }
              ]
            },
            "exploit": [
              {
                "lang": "en",
                "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
              }
            ],
            "impact": {
              "cvss": {
                "baseScore": "8.6",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.0"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-241"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20211027 Multiple Cisco Products Snort Rule Denial of Service Vulnerability",
                  "refsource": "CISCO",
                  "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-RywH7ezM"
                }
              ]
            },
            "source": {
              "advisory": "cisco-sa-snort-dos-RywH7ezM",
              "defect": [
                [
                  "CSCvy66065"
                ]
              ],
              "discovery": "INTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-40116",
        "datePublished": "2021-10-27T18:56:42.934Z",
        "dateReserved": "2021-08-25T00:00:00.000Z",
        "dateUpdated": "2024-11-07T21:45:31.681Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-40114 (GCVE-0-2021-40114)

    Vulnerability from cvelistv5 – Published: 2021-10-27 18:56 – Updated: 2024-11-07 21:43
    VLAI
    Title
    Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability
    Summary
    Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Date Public
    2021-10-27 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T02:27:31.905Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20211027 Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU"
              },
              {
                "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
                "tags": [
                  "mailing-list",
                  "x_transferred"
                ],
                "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
              },
              {
                "name": "DSA-5354",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://www.debian.org/security/2023/dsa-5354"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-40114",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-07T21:39:43.541348Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-07T21:43:47.611Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Firepower Threat Defense Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-10-27T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 6.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-770",
                  "description": "CWE-770",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-02-19T00:00:00.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20211027 Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU"
            },
            {
              "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
              "tags": [
                "mailing-list"
              ],
              "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
            },
            {
              "name": "DSA-5354",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.debian.org/security/2023/dsa-5354"
            }
          ],
          "source": {
            "advisory": "cisco-sa-snort-dos-s2R7W9UU",
            "defect": [
              [
                "CSCvt57503",
                "CSCvx29001"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-40114",
        "datePublished": "2021-10-27T18:56:37.380Z",
        "dateReserved": "2021-08-25T00:00:00.000Z",
        "dateUpdated": "2024-11-07T21:43:47.611Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-1495 (GCVE-0-2021-1495)

    Vulnerability from cvelistv5 – Published: 2021-04-29 17:31 – Updated: 2024-11-08 23:22
    VLAI
    Title
    Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability
    Summary
    Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of specific HTTP header parameters. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured file policy for HTTP packets and deliver a malicious payload.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • NA
    Assigner
    Impacted products
    Date Public
    2021-04-28 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:11:17.563Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20210428 Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-http-fp-bp-KfDdcQhc"
              },
              {
                "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
                "tags": [
                  "mailing-list",
                  "x_transferred"
                ],
                "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
              },
              {
                "name": "DSA-5354",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://www.debian.org/security/2023/dsa-5354"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1495",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-08T20:02:18.238315Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-08T23:22:35.276Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Firepower Threat Defense Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-04-28T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of specific HTTP header parameters. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured file policy for HTTP packets and deliver a malicious payload."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "NA",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-02-19T00:00:00.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20210428 Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-http-fp-bp-KfDdcQhc"
            },
            {
              "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
              "tags": [
                "mailing-list"
              ],
              "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
            },
            {
              "name": "DSA-5354",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.debian.org/security/2023/dsa-5354"
            }
          ],
          "source": {
            "advisory": "cisco-sa-http-fp-bp-KfDdcQhc",
            "defect": [
              [
                "CSCvw19272",
                "CSCvw59055"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-1495",
        "datePublished": "2021-04-29T17:31:20.004Z",
        "dateReserved": "2020-11-13T00:00:00.000Z",
        "dateUpdated": "2024-11-08T23:22:35.276Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-1236 (GCVE-0-2021-1236)

    Vulnerability from cvelistv5 – Published: 2021-01-13 21:17 – Updated: 2024-11-12 20:48
    VLAI
    Title
    Multiple Cisco Products Snort Application Detection Engine Policy Bypass Vulnerability
    Summary
    Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. The vulnerability is due to a flaw in the detection algorithm. An attacker could exploit this vulnerability by sending crafted packets that would flow through an affected system. A successful exploit could allow the attacker to bypass the configured policies and deliver a malicious payload to the protected network.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Date Public
    2021-01-13 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:02:56.434Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20210113 Multiple Cisco Products Snort Application Detection Engine Policy Bypass Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-app-bypass-cSBYCATq"
              },
              {
                "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
                "tags": [
                  "mailing-list",
                  "x_transferred"
                ],
                "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
              },
              {
                "name": "DSA-5354",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://www.debian.org/security/2023/dsa-5354"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1236",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-08T20:55:08.338945Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-12T20:48:23.581Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Firepower Threat Defense Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-01-13T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. The vulnerability is due to a flaw in the detection algorithm. An attacker could exploit this vulnerability by sending crafted packets that would flow through an affected system. A successful exploit could allow the attacker to bypass the configured policies and deliver a malicious payload to the protected network."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N",
                "version": "3.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-670",
                  "description": "CWE-670",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-02-19T00:00:00.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20210113 Multiple Cisco Products Snort Application Detection Engine Policy Bypass Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-app-bypass-cSBYCATq"
            },
            {
              "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
              "tags": [
                "mailing-list"
              ],
              "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
            },
            {
              "name": "DSA-5354",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.debian.org/security/2023/dsa-5354"
            }
          ],
          "source": {
            "advisory": "cisco-sa-snort-app-bypass-cSBYCATq",
            "defect": [
              [
                "CSCvs85467",
                "CSCvu21318"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Multiple Cisco Products Snort Application Detection Engine Policy Bypass Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-1236",
        "datePublished": "2021-01-13T21:17:03.406Z",
        "dateReserved": "2020-11-13T00:00:00.000Z",
        "dateUpdated": "2024-11-12T20:48:23.581Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-1224 (GCVE-0-2021-1224)

    Vulnerability from cvelistv5 – Published: 2021-01-13 21:16 – Updated: 2024-11-12 20:48
    VLAI
    Title
    Multiple Cisco Products Snort TCP Fast Open File Policy Bypass Vulnerability
    Summary
    Multiple Cisco products are affected by a vulnerability with TCP Fast Open (TFO) when used in conjunction with the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect detection of the HTTP payload if it is contained at least partially within the TFO connection handshake. An attacker could exploit this vulnerability by sending crafted TFO packets with an HTTP payload through an affected device. A successful exploit could allow the attacker to bypass configured file policy for HTTP packets and deliver a malicious payload.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Date Public
    2021-01-13 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:02:56.126Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20210113 Multiple Cisco Products Snort TCP Fast Open File Policy Bypass Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-tfo-bypass-MmzZrtes"
              },
              {
                "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
                "tags": [
                  "mailing-list",
                  "x_transferred"
                ],
                "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
              },
              {
                "name": "DSA-5354",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://www.debian.org/security/2023/dsa-5354"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1224",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-08T20:06:11.617988Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-12T20:48:38.628Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Firepower Threat Defense Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-01-13T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple Cisco products are affected by a vulnerability with TCP Fast Open (TFO) when used in conjunction with the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect detection of the HTTP payload if it is contained at least partially within the TFO connection handshake. An attacker could exploit this vulnerability by sending crafted TFO packets with an HTTP payload through an affected device. A successful exploit could allow the attacker to bypass configured file policy for HTTP packets and deliver a malicious payload."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-693",
                  "description": "CWE-693",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-02-19T00:00:00.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20210113 Multiple Cisco Products Snort TCP Fast Open File Policy Bypass Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-tfo-bypass-MmzZrtes"
            },
            {
              "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
              "tags": [
                "mailing-list"
              ],
              "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
            },
            {
              "name": "DSA-5354",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.debian.org/security/2023/dsa-5354"
            }
          ],
          "source": {
            "advisory": "cisco-sa-snort-tfo-bypass-MmzZrtes",
            "defect": [
              [
                "CSCvt43136",
                "CSCvu88532"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Multiple Cisco Products Snort TCP Fast Open File Policy Bypass Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-1224",
        "datePublished": "2021-01-13T21:16:53.450Z",
        "dateReserved": "2020-11-13T00:00:00.000Z",
        "dateUpdated": "2024-11-12T20:48:38.628Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-1223 (GCVE-0-2021-1223)

    Vulnerability from cvelistv5 – Published: 2021-01-13 21:16 – Updated: 2024-11-12 20:48
    VLAI
    Title
    Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability
    Summary
    Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of an HTTP range header. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass configured file policy for HTTP packets and deliver a malicious payload.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Date Public
    2021-01-13 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:02:56.174Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20210113 Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-filepolbypass-67DEwMe2"
              },
              {
                "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
                "tags": [
                  "mailing-list",
                  "x_transferred"
                ],
                "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
              },
              {
                "name": "DSA-5354",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://www.debian.org/security/2023/dsa-5354"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1223",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-08T20:06:16.123523Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-12T20:48:44.825Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Firepower Threat Defense Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-01-13T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of an HTTP range header. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass configured file policy for HTTP packets and deliver a malicious payload."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
                "version": "3.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-693",
                  "description": "CWE-693",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-02-19T00:00:00.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20210113 Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-filepolbypass-67DEwMe2"
            },
            {
              "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
              "tags": [
                "mailing-list"
              ],
              "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
            },
            {
              "name": "DSA-5354",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.debian.org/security/2023/dsa-5354"
            }
          ],
          "source": {
            "advisory": "cisco-sa-snort-filepolbypass-67DEwMe2",
            "defect": [
              [
                "CSCvs71969",
                "CSCvu18635"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-1223",
        "datePublished": "2021-01-13T21:16:48.777Z",
        "dateReserved": "2020-11-13T00:00:00.000Z",
        "dateUpdated": "2024-11-12T20:48:44.825Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-3299 (GCVE-0-2020-3299)

    Vulnerability from cvelistv5 – Published: 2020-10-21 18:25 – Updated: 2024-11-13 17:50
    VLAI
    Title
    Multiple Cisco Products SNORT HTTP Detection Engine File Policy Bypass Vulnerability
    Summary
    Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured File Policy for HTTP. The vulnerability is due to incorrect detection of modified HTTP packets used in chunked responses. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured File Policy for HTTP packets and deliver a malicious payload.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Date Public
    2020-10-21 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T07:30:57.923Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20201021 Multiple Cisco Products SNORT HTTP Detection Engine File Policy Bypass Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-bypass-3eCfd24j"
              },
              {
                "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
                "tags": [
                  "mailing-list",
                  "x_transferred"
                ],
                "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
              },
              {
                "name": "DSA-5354",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://www.debian.org/security/2023/dsa-5354"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2020-3299",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-13T17:12:30.607418Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-13T17:50:59.312Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Firepower Threat Defense Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2020-10-21T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured File Policy for HTTP. The vulnerability is due to incorrect detection of modified HTTP packets used in chunked responses. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured File Policy for HTTP packets and deliver a malicious payload."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
                "version": "3.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-693",
                  "description": "CWE-693",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-02-19T00:00:00.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20201021 Multiple Cisco Products SNORT HTTP Detection Engine File Policy Bypass Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-bypass-3eCfd24j"
            },
            {
              "name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
              "tags": [
                "mailing-list"
              ],
              "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
            },
            {
              "name": "DSA-5354",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.debian.org/security/2023/dsa-5354"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ftd-bypass-3eCfd24j",
            "defect": [
              [
                "CSCvm69545",
                "CSCvq96573"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Multiple Cisco Products SNORT HTTP Detection Engine File Policy Bypass Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2020-3299",
        "datePublished": "2020-10-21T18:25:13.223Z",
        "dateReserved": "2019-12-12T00:00:00.000Z",
        "dateUpdated": "2024-11-13T17:50:59.312Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2016-1417 (GCVE-0-2016-1417)

    Vulnerability from cvelistv5 – Published: 2017-01-23 21:00 – Updated: 2024-08-05 22:55
    VLAI
    Summary
    Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse tcapi.dll that is located in the same folder on a remote file share as a pcap file that is being processed.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2016-09-29 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T22:55:14.551Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "1036936",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1036936"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://hyp3rlinx.altervista.org/advisories/SNORT-DLL-HIJACK.txt"
              },
              {
                "name": "93269",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/93269"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/138915/Snort-2.9.7.0-WIN32-DLL-Hijacking.html"
              },
              {
                "name": "20161012 Snort v2.9.7.0-WIN32 DLL Hijack",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/539579/100/0/threaded"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2016-09-29T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse tcapi.dll that is located in the same folder on a remote file share as a pcap file that is being processed."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-09T18:57:01.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "1036936",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1036936"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://hyp3rlinx.altervista.org/advisories/SNORT-DLL-HIJACK.txt"
            },
            {
              "name": "93269",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/93269"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/138915/Snort-2.9.7.0-WIN32-DLL-Hijacking.html"
            },
            {
              "name": "20161012 Snort v2.9.7.0-WIN32 DLL Hijack",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/539579/100/0/threaded"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@cisco.com",
              "ID": "CVE-2016-1417",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse tcapi.dll that is located in the same folder on a remote file share as a pcap file that is being processed."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "1036936",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1036936"
                },
                {
                  "name": "http://hyp3rlinx.altervista.org/advisories/SNORT-DLL-HIJACK.txt",
                  "refsource": "MISC",
                  "url": "http://hyp3rlinx.altervista.org/advisories/SNORT-DLL-HIJACK.txt"
                },
                {
                  "name": "93269",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/93269"
                },
                {
                  "name": "http://packetstormsecurity.com/files/138915/Snort-2.9.7.0-WIN32-DLL-Hijacking.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/138915/Snort-2.9.7.0-WIN32-DLL-Hijacking.html"
                },
                {
                  "name": "20161012 Snort v2.9.7.0-WIN32 DLL Hijack",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/539579/100/0/threaded"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2016-1417",
        "datePublished": "2017-01-23T21:00:00.000Z",
        "dateReserved": "2016-01-04T00:00:00.000Z",
        "dateUpdated": "2024-08-05T22:55:14.551Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }