CVE-2006-5276 (GCVE-0-2006-5276)

Vulnerability from cvelistv5 – Published: 2007-02-20 00:00 – Updated: 2024-08-07 19:48

Summary

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://www.us-cert.gov/cas/techalerts/TA07-050A.html	third-party-advisoryx_refsource_CERT
	http://www.kb.cert.org/vuls/id/196240	third-party-advisoryx_refsource_CERT-VN
	http://www116.nortelnetworks.com/pub/repository/C…	x_refsource_CONFIRM
	http://security.gentoo.org/glsa/glsa-200703-01.xml	vendor-advisoryx_refsource_GENTOO
	http://secunia.com/advisories/26746	third-party-advisoryx_refsource_SECUNIA
	http://www.securityfocus.com/archive/1/461810/100…	mailing-listx_refsource_BUGTRAQ
	http://secunia.com/advisories/24190	third-party-advisoryx_refsource_SECUNIA
	http://www.snort.org/docs/advisory-2007-02-19.html	x_refsource_CONFIRM
	http://secunia.com/advisories/24239	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/24272	third-party-advisoryx_refsource_SECUNIA
	http://www.vupen.com/english/advisories/2007/0656	vdb-entryx_refsource_VUPEN
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://fedoranews.org/updates/FEDORA-2007-206.shtml	vendor-advisoryx_refsource_FEDORA
	http://www.vupen.com/english/advisories/2007/0668	vdb-entryx_refsource_VUPEN
	http://www.osvdb.org/32094	vdb-entryx_refsource_OSVDB
	http://secunia.com/advisories/24235	third-party-advisoryx_refsource_SECUNIA
	http://www.securitytracker.com/id?1017670	vdb-entryx_refsource_SECTRACK
	http://secunia.com/advisories/24240	third-party-advisoryx_refsource_SECUNIA
	http://iss.net/threats/257.html	third-party-advisoryx_refsource_ISS
	http://www.securityfocus.com/bid/22616	vdb-entryx_refsource_BID
	http://www130.nortelnetworks.com/go/main.jsp?csca…	x_refsource_CONFIRM
	https://www.exploit-db.com/exploits/3362	exploitx_refsource_EXPLOIT-DB
	https://bugzilla.redhat.com/show_bug.cgi?id=229265	x_refsource_MISC
	http://www.securitytracker.com/id?1017669	vdb-entryx_refsource_SECTRACK

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T19:48:28.530Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "TA07-050A",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT",
              "x_transferred"
            ],
            "url": "http://www.us-cert.gov/cas/techalerts/TA07-050A.html"
          },
          {
            "name": "VU#196240",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/196240"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www116.nortelnetworks.com/pub/repository/CLARIFY/DOCUMENT/2007/08/021923-01.pdf"
          },
          {
            "name": "GLSA-200703-01",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://security.gentoo.org/glsa/glsa-200703-01.xml"
          },
          {
            "name": "26746",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/26746"
          },
          {
            "name": "20070303 ERRATA: [ GLSA 200703-01 ] Snort: Remote execution of arbitrary code",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/461810/100/0/threaded"
          },
          {
            "name": "24190",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24190"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.snort.org/docs/advisory-2007-02-19.html"
          },
          {
            "name": "24239",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24239"
          },
          {
            "name": "24272",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24272"
          },
          {
            "name": "ADV-2007-0656",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2007/0656"
          },
          {
            "name": "smb-bo(31275)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31275"
          },
          {
            "name": "FEDORA-2007-2060",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://fedoranews.org/updates/FEDORA-2007-206.shtml"
          },
          {
            "name": "ADV-2007-0668",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2007/0668"
          },
          {
            "name": "32094",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://www.osvdb.org/32094"
          },
          {
            "name": "24235",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24235"
          },
          {
            "name": "1017670",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1017670"
          },
          {
            "name": "24240",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24240"
          },
          {
            "name": "20070219 Sourcefire Snort Remote Buffer Overflow",
            "tags": [
              "third-party-advisory",
              "x_refsource_ISS",
              "x_transferred"
            ],
            "url": "http://iss.net/threats/257.html"
          },
          {
            "name": "22616",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/22616"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL\u0026DocumentOID=540173"
          },
          {
            "name": "3362",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "https://www.exploit-db.com/exploits/3362"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=229265"
          },
          {
            "name": "1017669",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1017669"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2007-02-19T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-17T20:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "TA07-050A",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT"
          ],
          "url": "http://www.us-cert.gov/cas/techalerts/TA07-050A.html"
        },
        {
          "name": "VU#196240",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/196240"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www116.nortelnetworks.com/pub/repository/CLARIFY/DOCUMENT/2007/08/021923-01.pdf"
        },
        {
          "name": "GLSA-200703-01",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://security.gentoo.org/glsa/glsa-200703-01.xml"
        },
        {
          "name": "26746",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/26746"
        },
        {
          "name": "20070303 ERRATA: [ GLSA 200703-01 ] Snort: Remote execution of arbitrary code",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/461810/100/0/threaded"
        },
        {
          "name": "24190",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24190"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.snort.org/docs/advisory-2007-02-19.html"
        },
        {
          "name": "24239",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24239"
        },
        {
          "name": "24272",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24272"
        },
        {
          "name": "ADV-2007-0656",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2007/0656"
        },
        {
          "name": "smb-bo(31275)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31275"
        },
        {
          "name": "FEDORA-2007-2060",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://fedoranews.org/updates/FEDORA-2007-206.shtml"
        },
        {
          "name": "ADV-2007-0668",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2007/0668"
        },
        {
          "name": "32094",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://www.osvdb.org/32094"
        },
        {
          "name": "24235",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24235"
        },
        {
          "name": "1017670",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1017670"
        },
        {
          "name": "24240",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24240"
        },
        {
          "name": "20070219 Sourcefire Snort Remote Buffer Overflow",
          "tags": [
            "third-party-advisory",
            "x_refsource_ISS"
          ],
          "url": "http://iss.net/threats/257.html"
        },
        {
          "name": "22616",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/22616"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL\u0026DocumentOID=540173"
        },
        {
          "name": "3362",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "https://www.exploit-db.com/exploits/3362"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=229265"
        },
        {
          "name": "1017669",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1017669"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-5276",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "TA07-050A",
              "refsource": "CERT",
              "url": "http://www.us-cert.gov/cas/techalerts/TA07-050A.html"
            },
            {
              "name": "VU#196240",
              "refsource": "CERT-VN",
              "url": "http://www.kb.cert.org/vuls/id/196240"
            },
            {
              "name": "http://www116.nortelnetworks.com/pub/repository/CLARIFY/DOCUMENT/2007/08/021923-01.pdf",
              "refsource": "CONFIRM",
              "url": "http://www116.nortelnetworks.com/pub/repository/CLARIFY/DOCUMENT/2007/08/021923-01.pdf"
            },
            {
              "name": "GLSA-200703-01",
              "refsource": "GENTOO",
              "url": "http://security.gentoo.org/glsa/glsa-200703-01.xml"
            },
            {
              "name": "26746",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/26746"
            },
            {
              "name": "20070303 ERRATA: [ GLSA 200703-01 ] Snort: Remote execution of arbitrary code",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/461810/100/0/threaded"
            },
            {
              "name": "24190",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24190"
            },
            {
              "name": "http://www.snort.org/docs/advisory-2007-02-19.html",
              "refsource": "CONFIRM",
              "url": "http://www.snort.org/docs/advisory-2007-02-19.html"
            },
            {
              "name": "24239",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24239"
            },
            {
              "name": "24272",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24272"
            },
            {
              "name": "ADV-2007-0656",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2007/0656"
            },
            {
              "name": "smb-bo(31275)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31275"
            },
            {
              "name": "FEDORA-2007-2060",
              "refsource": "FEDORA",
              "url": "http://fedoranews.org/updates/FEDORA-2007-206.shtml"
            },
            {
              "name": "ADV-2007-0668",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2007/0668"
            },
            {
              "name": "32094",
              "refsource": "OSVDB",
              "url": "http://www.osvdb.org/32094"
            },
            {
              "name": "24235",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24235"
            },
            {
              "name": "1017670",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1017670"
            },
            {
              "name": "24240",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24240"
            },
            {
              "name": "20070219 Sourcefire Snort Remote Buffer Overflow",
              "refsource": "ISS",
              "url": "http://iss.net/threats/257.html"
            },
            {
              "name": "22616",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/22616"
            },
            {
              "name": "http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL\u0026DocumentOID=540173",
              "refsource": "CONFIRM",
              "url": "http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL\u0026DocumentOID=540173"
            },
            {
              "name": "3362",
              "refsource": "EXPLOIT-DB",
              "url": "https://www.exploit-db.com/exploits/3362"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=229265",
              "refsource": "MISC",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=229265"
            },
            {
              "name": "1017669",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1017669"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2006-5276",
    "datePublished": "2007-02-20T00:00:00",
    "dateReserved": "2006-10-13T00:00:00",
    "dateUpdated": "2024-08-07T19:48:28.530Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"2.6.1.2\", \"matchCriteriaId\": \"049CC20E-A8C9-423D-BA17-87F3B21C3964\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:snort:snort:2.6.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D28E9711-C9BB-4351-A6C3-0DDB26BC4ECC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:snort:snort:2.6.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1B8F630B-DD44-4095-B90D-2D18CD321580\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:snort:snort:2.7_beta1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9C41D0F1-BDB9-4F50-81CF-F5DF07770DDF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sourcefire:intrusion_sensor:4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1E24DE19-7B69-495F-804E-DFE57AA2FBA7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sourcefire:intrusion_sensor:4.1:*:crossbeam:*:*:*:*:*\", \"matchCriteriaId\": \"249CE671-2731-4FA3-B689-08AB3EFA4C87\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sourcefire:intrusion_sensor:4.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C0EC7DB1-D00A-4559-8A83-38C4C1666CEC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sourcefire:intrusion_sensor:4.5:*:crossbeam:*:*:*:*:*\", \"matchCriteriaId\": \"F2085309-7B4F-4425-83E3-978A801BA38A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sourcefire:intrusion_sensor:4.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"21B02137-1C99-41A5-8E5F-42C033CB8A2C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sourcefire:intrusion_sensor:4.6:*:crossbeam:*:*:*:*:*\", \"matchCriteriaId\": \"E8E96C7F-8F66-4385-88D5-DE0878A2FFBE\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic.\"}, {\"lang\": \"es\", \"value\": \"Desbordamiento de b\\u00fafer en el preprocesador DCE/RPC en Snort anterior a 2.6.1.3, y 2.7 anterior a beta 2; y Sourcefire Intrusion Sensor;permite a atacantes remotos ejecutar c\\u00f3digo de su elecci\\u00f3n mediante tr\\u00e1fico SMB manipulado.\"}]",
      "evaluatorComment": "All affected Sourcefire Intrustion Sensor products are only vulnerable if they are used with SEUs prior to SEU 64.",
      "evaluatorSolution": "Upgrade to the latest version of Snort (2.6.1.3 or later), available from the Snort Web site.",
      "id": "CVE-2006-5276",
      "lastModified": "2024-11-21T00:18:34.630",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:C/I:C/A:C\", \"baseScore\": 10.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": true, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2007-02-20T01:28:00.000",
      "references": "[{\"url\": \"http://fedoranews.org/updates/FEDORA-2007-206.shtml\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://iss.net/threats/257.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/24190\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/24235\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/24239\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/24240\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/24272\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/26746\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://security.gentoo.org/glsa/glsa-200703-01.xml\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.kb.cert.org/vuls/id/196240\", \"source\": \"cve@mitre.org\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.osvdb.org/32094\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/archive/1/461810/100/0/threaded\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/22616\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securitytracker.com/id?1017669\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securitytracker.com/id?1017670\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.snort.org/docs/advisory-2007-02-19.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.us-cert.gov/cas/techalerts/TA07-050A.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\", \"US Government Resource\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2007/0656\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2007/0668\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www116.nortelnetworks.com/pub/repository/CLARIFY/DOCUMENT/2007/08/021923-01.pdf\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL\u0026DocumentOID=540173\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=229265\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/31275\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://www.exploit-db.com/exploits/3362\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://fedoranews.org/updates/FEDORA-2007-206.shtml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://iss.net/threats/257.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/24190\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/24235\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/24239\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/24240\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/24272\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/26746\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://security.gentoo.org/glsa/glsa-200703-01.xml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.kb.cert.org/vuls/id/196240\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.osvdb.org/32094\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/461810/100/0/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/22616\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securitytracker.com/id?1017669\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securitytracker.com/id?1017670\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.snort.org/docs/advisory-2007-02-19.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.us-cert.gov/cas/techalerts/TA07-050A.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"US Government Resource\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2007/0656\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2007/0668\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www116.nortelnetworks.com/pub/repository/CLARIFY/DOCUMENT/2007/08/021923-01.pdf\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL\u0026DocumentOID=540173\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=229265\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/31275\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.exploit-db.com/exploits/3362\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2006-5276\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2007-02-20T01:28:00.000\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic.\"},{\"lang\":\"es\",\"value\":\"Desbordamiento de b\u00fafer en el preprocesador DCE/RPC en Snort anterior a 2.6.1.3, y 2.7 anterior a beta 2; y Sourcefire Intrusion Sensor;permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n mediante tr\u00e1fico SMB manipulado.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":10.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":true,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.6.1.2\",\"matchCriteriaId\":\"049CC20E-A8C9-423D-BA17-87F3B21C3964\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:snort:snort:2.6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D28E9711-C9BB-4351-A6C3-0DDB26BC4ECC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:snort:snort:2.6.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1B8F630B-DD44-4095-B90D-2D18CD321580\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:snort:snort:2.7_beta1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9C41D0F1-BDB9-4F50-81CF-F5DF07770DDF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sourcefire:intrusion_sensor:4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1E24DE19-7B69-495F-804E-DFE57AA2FBA7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sourcefire:intrusion_sensor:4.1:*:crossbeam:*:*:*:*:*\",\"matchCriteriaId\":\"249CE671-2731-4FA3-B689-08AB3EFA4C87\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sourcefire:intrusion_sensor:4.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C0EC7DB1-D00A-4559-8A83-38C4C1666CEC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sourcefire:intrusion_sensor:4.5:*:crossbeam:*:*:*:*:*\",\"matchCriteriaId\":\"F2085309-7B4F-4425-83E3-978A801BA38A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sourcefire:intrusion_sensor:4.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"21B02137-1C99-41A5-8E5F-42C033CB8A2C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sourcefire:intrusion_sensor:4.6:*:crossbeam:*:*:*:*:*\",\"matchCriteriaId\":\"E8E96C7F-8F66-4385-88D5-DE0878A2FFBE\"}]}]}],\"references\":[{\"url\":\"http://fedoranews.org/updates/FEDORA-2007-206.shtml\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://iss.net/threats/257.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/24190\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/24235\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/24239\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/24240\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/24272\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/26746\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://security.gentoo.org/glsa/glsa-200703-01.xml\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.kb.cert.org/vuls/id/196240\",\"source\":\"cve@mitre.org\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.osvdb.org/32094\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/461810/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/22616\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securitytracker.com/id?1017669\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securitytracker.com/id?1017670\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.snort.org/docs/advisory-2007-02-19.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.us-cert.gov/cas/techalerts/TA07-050A.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.vupen.com/english/advisories/2007/0656\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/0668\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www116.nortelnetworks.com/pub/repository/CLARIFY/DOCUMENT/2007/08/021923-01.pdf\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL\u0026DocumentOID=540173\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=229265\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/31275\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.exploit-db.com/exploits/3362\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://fedoranews.org/updates/FEDORA-2007-206.shtml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://iss.net/threats/257.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/24190\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/24235\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/24239\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/24240\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/24272\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/26746\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://security.gentoo.org/glsa/glsa-200703-01.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.kb.cert.org/vuls/id/196240\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.osvdb.org/32094\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/461810/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/22616\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id?1017669\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id?1017670\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.snort.org/docs/advisory-2007-02-19.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.us-cert.gov/cas/techalerts/TA07-050A.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.vupen.com/english/advisories/2007/0656\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/0668\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www116.nortelnetworks.com/pub/repository/CLARIFY/DOCUMENT/2007/08/021923-01.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL\u0026DocumentOID=540173\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=229265\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/31275\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.exploit-db.com/exploits/3362\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}],\"evaluatorComment\":\"All affected Sourcefire Intrustion Sensor products are only vulnerable if they are used with SEUs prior to SEU 64.\",\"evaluatorSolution\":\"Upgrade to the latest version of Snort (2.6.1.3 or later), available from the Snort Web site.\"}}"
  }
}

CERTA-2007-AVI-095

Vulnerability from certfr_avis - Published: - Updated:

Une erreur de traitement par le préprocesseur DCE/RPC de Snort permettrait à un utilisateur malveillant d'exécuter du code arbitraire à distance.

Description

Sourcefire Snort est un logiciel libre de système de détection d'intrusion. Une erreur de traitement par le préprocesseur DCE/RPC de Snort conduit à un mauvais réassemblage de trafic fragmenté DCE/RPC et SMB. Cette erreur permettrait à un utilisateur malveillant d'exécuter du code arbitraire à distance.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
N/A	N/A	Sourcefire Intrusion Sensor for Crossbeam versions 4.1.x, 4.5.x, 4.6.x avec SEU antérieur à SEU 64.
N/A	N/A	Snort versions 2.6.1, 2.6.1.1, 2.6.1.2, 2.7.0 beta 1 ;
N/A	N/A	Sourcefire Intrusion Sensor versions 4.1.x, 4.5.x, 4.6.x avec SEU antérieur à SEU 64 ;

References

Title

Publication Time

Tags

Alerte TA07-050A de l'US-CERT	None	vendor-advisory
Mise à jour pour Gentoo :	-	other
Alerte de sécurité de l'US-CERT TA07-050A du 19 février 2007 :	-	other
Bulletin de la version 2.6.1.3 de Sourcefire :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Sourcefire Intrusion Sensor for Crossbeam versions 4.1.x, 4.5.x, 4.6.x avec SEU ant\u00e9rieur \u00e0 SEU 64.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "Snort versions 2.6.1, 2.6.1.1, 2.6.1.2, 2.7.0 beta 1 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "Sourcefire Intrusion Sensor versions 4.1.x, 4.5.x, 4.6.x avec SEU ant\u00e9rieur \u00e0 SEU 64 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nSourcefire Snort est un logiciel libre de syst\u00e8me de d\u00e9tection\nd\u0027intrusion. Une erreur de traitement par le pr\u00e9processeur DCE/RPC de\nSnort conduit \u00e0 un mauvais r\u00e9assemblage de trafic fragment\u00e9 DCE/RPC et\nSMB. Cette erreur permettrait \u00e0 un utilisateur malveillant d\u0027ex\u00e9cuter du\ncode arbitraire \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2006-5276",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-5276"
    }
  ],
  "links": [
    {
      "title": "Mise \u00e0 jour pour Gentoo :",
      "url": "http://www.gentoo.org/security/en/gisa/gisa-200703-01.xml"
    },
    {
      "title": "Alerte de s\u00e9curit\u00e9 de l\u0027US-CERT TA07-050A du 19 f\u00e9vrier    2007 :",
      "url": "http://www.us-cert.gov/cas/techalerts/TA07-050A.html"
    },
    {
      "title": "Bulletin de la version 2.6.1.3 de Sourcefire :",
      "url": "http://www.snort.org/docs/release_notes/release_notes_2613.txt"
    }
  ],
  "reference": "CERTA-2007-AVI-095",
  "revisions": [
    {
      "description": "version initiale;",
      "revision_date": "2007-02-20T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence au correctif pour Gentoo.",
      "revision_date": "2007-03-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une erreur de traitement par le pr\u00e9processeur DCE/RPC de \u003cspan\nclass=\"textit\"\u003eSnort\u003c/span\u003e permettrait \u00e0 un utilisateur malveillant\nd\u0027ex\u00e9cuter du code arbitraire \u00e0 distance.\n",
  "title": "Vuln\u00e9rabilit\u00e9 de Snort",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Alerte TA07-050A de l\u0027US-CERT",
      "url": null
    }
  ]
}

CERTA-2007-AVI-095

Vulnerability from certfr_avis - Published: - Updated:

Une erreur de traitement par le préprocesseur DCE/RPC de Snort permettrait à un utilisateur malveillant d'exécuter du code arbitraire à distance.

Description

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
N/A	N/A	Sourcefire Intrusion Sensor for Crossbeam versions 4.1.x, 4.5.x, 4.6.x avec SEU antérieur à SEU 64.
N/A	N/A	Snort versions 2.6.1, 2.6.1.1, 2.6.1.2, 2.7.0 beta 1 ;
N/A	N/A	Sourcefire Intrusion Sensor versions 4.1.x, 4.5.x, 4.6.x avec SEU antérieur à SEU 64 ;

References

Title

Publication Time

Tags

Alerte TA07-050A de l'US-CERT	None	vendor-advisory
Mise à jour pour Gentoo :	-	other
Alerte de sécurité de l'US-CERT TA07-050A du 19 février 2007 :	-	other
Bulletin de la version 2.6.1.3 de Sourcefire :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Sourcefire Intrusion Sensor for Crossbeam versions 4.1.x, 4.5.x, 4.6.x avec SEU ant\u00e9rieur \u00e0 SEU 64.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "Snort versions 2.6.1, 2.6.1.1, 2.6.1.2, 2.7.0 beta 1 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "Sourcefire Intrusion Sensor versions 4.1.x, 4.5.x, 4.6.x avec SEU ant\u00e9rieur \u00e0 SEU 64 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nSourcefire Snort est un logiciel libre de syst\u00e8me de d\u00e9tection\nd\u0027intrusion. Une erreur de traitement par le pr\u00e9processeur DCE/RPC de\nSnort conduit \u00e0 un mauvais r\u00e9assemblage de trafic fragment\u00e9 DCE/RPC et\nSMB. Cette erreur permettrait \u00e0 un utilisateur malveillant d\u0027ex\u00e9cuter du\ncode arbitraire \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2006-5276",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-5276"
    }
  ],
  "links": [
    {
      "title": "Mise \u00e0 jour pour Gentoo :",
      "url": "http://www.gentoo.org/security/en/gisa/gisa-200703-01.xml"
    },
    {
      "title": "Alerte de s\u00e9curit\u00e9 de l\u0027US-CERT TA07-050A du 19 f\u00e9vrier    2007 :",
      "url": "http://www.us-cert.gov/cas/techalerts/TA07-050A.html"
    },
    {
      "title": "Bulletin de la version 2.6.1.3 de Sourcefire :",
      "url": "http://www.snort.org/docs/release_notes/release_notes_2613.txt"
    }
  ],
  "reference": "CERTA-2007-AVI-095",
  "revisions": [
    {
      "description": "version initiale;",
      "revision_date": "2007-02-20T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence au correctif pour Gentoo.",
      "revision_date": "2007-03-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une erreur de traitement par le pr\u00e9processeur DCE/RPC de \u003cspan\nclass=\"textit\"\u003eSnort\u003c/span\u003e permettrait \u00e0 un utilisateur malveillant\nd\u0027ex\u00e9cuter du code arbitraire \u00e0 distance.\n",
  "title": "Vuln\u00e9rabilit\u00e9 de Snort",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Alerte TA07-050A de l\u0027US-CERT",
      "url": null
    }
  ]
}

VAR-200702-0378

Vulnerability from variot - Updated: 2024-07-23 22:43

Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic. Snort IDS and Sourcefire Intrusion Sensor are prone to a stack-based buffer-overflow vulnerability because the network intrusion detection (NID) systems fail to handle specially crafted 'DCE' and 'RPC' network packets. An attacker can exploit this issue to execute malicious code in the context of the user running the affected application. Failed attempts will likely cause these applications to crash. The software provides functions such as packet sniffing, packet analysis, and packet inspection. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

                 National Cyber Alert System

           Technical Cyber Security Alert TA07-050A

Sourcefire Snort DCE/RPC Preprocessor Buffer Overflow

Original release date: February 19, 2007 Last revised: -- Source: US-CERT

Systems Affected

 * Snort 2.6.1, 2.6.1.1, and 2.6.1.2
 * Snort 2.7.0 beta 1
 * Sourcefire Intrusion Sensors version 4.1.x, 4.5.x, and 4.6x with
   SEUs prior to SEU 64
 * Sourcefire Intrusion Sensors for Crossbeam version 4.1.x, 4.5.x,
   and 4.6x with SEUs prior to SEU 64

Other products that use Snort or Snort components may be affected.

I. The DCE/RPC preprocessor reassembles fragmented SMB and DCE/RPC traffic before passing data to the Snort rules.

The vulnerable code does not properly reassemble certain types of SMB and DCE/RPC packets. An attacker could exploit this vulnerability by sending a specially crafted TCP packet to a host or network monitored by Snort. The DCE/RPC preprocessor is enabled by default, and it is not necessary for an attacker to complete a TCP handshake.

US-CERT is tracking this vulnerability as VU#196240. This vulnerability has been assigned CVE number CVE-2006-5276. Further information is available in advisories from Sourcefire and ISS.

II.

III. Solution

Upgrade

Snort 2.6.1.3 is available from the Snort download site. Sourcefire customers should visit the Sourcefire Support Login site.

Disable the DCE/RPC Preprocessor

To disable the DCE/RPC preprocessor, comment out the line that loads the preprocessor in the Snort configuration file (typically /etc/snort.conf on UNIX and Linux systems):

 [/etc/snort.conf]
 ... 
 #preprocessor dcerpc...

Restart Snort for the change to take effect.

Disabling the preprocessor will prevent Snort from reassembling fragmented SMB and DCE/RPC packets. This may allow attacks to evade the IDS.

IV. References

 * US-CERT Vulnerability Note VU#196240 -
   <http://www.kb.cert.org/vuls/id/196240>

 * Sourcefire Advisory 2007-02-19 -
   <http://www.snort.org/docs/advisory-2007-02-19.html>

 * Sourcefire Support Login - <https://support.sourcefire.com/>

 * Sourcefire Snort Release Notes for 2.6.1.3 -
   <http://www.snort.org/docs/release_notes/release_notes_2613.txt>

 * Snort downloads - <http://www.snort.org/dl/>

 * DCE/RPC Preprocessor -
   <http://www.snort.org/docs/snort_htmanuals/htmanual_261/node104.html>

 * IBM Internet Security Systems Protection Advisory -
   <http://iss.net/threats/257.html>

 * CVE-2006-5276 -
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-5276>

The most recent version of this document can be found at:

 <http://www.us-cert.gov/cas/techalerts/TA07-050A.html>

Feedback can be directed to US-CERT Technical Staff. Please send email to cert@cert.org with "TA07-050A Feedback VU#196240" in the subject.

For instructions on subscribing to or unsubscribing from this mailing list, visit http://www.us-cert.gov/cas/signup.html.

Produced 2007 by US-CERT, a government organization.

 <http://www.us-cert.gov/legal.html>

Revision History

February 19, 2007: Initial Release

-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux)

iQEVAwUBRdop4+xOF3G+ig+rAQKdtAgAhQY66LRfVlNkH30Q5RI0gIo5Vhu14yDP qulLEyzjDhC7gDHWBGQYdE9eCy9Yf3P4BfKJS0766he/7CFn+BaDs7ohnXaynHQq +kMYNBMBg2RbrGKfOGRLHc0P6X1tSP3w45IppjOv9Yo5SUVDCa7beZWURCIKZyp6 OuYXtnpiGNctHgeU56US0sfuKj8qP7KOd9pCDRDQRhJ3UUd9wDpXee66HBxchh+w RSIQiMxisOX9mMYBW3z4DM/lb7PxXoa2Q7DwjM1NIOe/0tAObCOvF4uYhOLCVyNg +EbcN9123V0PW95FITlHXvJU6K8srnnK+Fhpfyi4vg5bYeEF2WiUrg== =T7v8 -----END PGP SIGNATURE----- . February 19, 2007

Summary:

Sourcefire has learned of a remotely exploitable vulnerability in the Snort DCE/RPC preprocessor. Sourcefire has prepared updates for Snort open-source software to address this issue.

Mitigating Factors:

Users who have disabled the DCE/RPC preprocessor are not vulnerable.

Recommended Actions:

Open-source Snort 2.6.1.x users are advised to upgrade to Snort 2.6.1.3 (or later) immediately.
Open-source Snort 2.7 beta users are advised to mitigate this issue by disabling the DCE/RPC preprocessor. This issue will be resolved in Snort 2.7 beta 2.

Workarounds:

Snort users who cannot upgrade immediately are advised to disable the DCE/RPC preprocessor by removing the DCE/RPC preprocessor directives from snort.conf and restarting Snort. However, be advised that disabling the DCE/RPC preprocessor reduces detection capabilities for attacks in DCE/RPC traffic. After upgrading, customers should reenable the DCE/RPC preprocessor.

Detecting Attacks Against This Vulnerability:

Sourcefire will be releasing a rule pack that provides detection for attacks against this vulnerability.

Has Sourcefire received any reports that this vulnerability has been exploited? - No. Sourcefire has not received any reports that this vulnerability has been exploited.

Acknowledgments:

Sourcefire would like to thank Neel Mehta from IBM X-Force for reporting this issue and working with us to resolve it.

Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV

Snort-announce mailing list Snort-announce@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/snort-announce .

Resolution

All Snort users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose ">=net-analyzer/snort-2.6.1.3"

References

[ 1 ] CVE-2006-5276 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5276

Availability

This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

http://security.gentoo.org/glsa/glsa-200703-01.xml

Concerns?

Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org.

License

The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/2.5

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-200702-0378",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "snort",
        "scope": "eq",
        "trust": 2.4,
        "vendor": "snort",
        "version": "2.6.1.1"
      },
      {
        "model": "snort",
        "scope": "eq",
        "trust": 2.4,
        "vendor": "snort",
        "version": "2.6.1"
      },
      {
        "model": "snort",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "snort",
        "version": "2.7_beta1"
      },
      {
        "model": "snort",
        "scope": "eq",
        "trust": 1.4,
        "vendor": "snort",
        "version": "2.6.1.2"
      },
      {
        "model": "intrusion sensor",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "sourcefire",
        "version": "4.5"
      },
      {
        "model": "intrusion sensor",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "sourcefire",
        "version": "4.1"
      },
      {
        "model": "intrusion sensor",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "sourcefire",
        "version": "4.6"
      },
      {
        "model": "snort",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "snort",
        "version": "2.6.1.2"
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "gentoo linux",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "nortel",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "snort",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "sourcefire",
        "version": null
      },
      {
        "model": "intrusion sensor",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "sourcefire",
        "version": "4.5.x"
      },
      {
        "model": "snort",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "snort",
        "version": "2.7.0 beta 1"
      },
      {
        "model": "intrusion sensor",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "sourcefire",
        "version": "for crossbeam version 4.1.x"
      },
      {
        "model": "intrusion sensor",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "sourcefire",
        "version": "4.6x of  seu 64 earlier versions"
      },
      {
        "model": "intrusion sensor",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "sourcefire",
        "version": "version 4.1.x"
      },
      {
        "model": "project snort",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "snort",
        "version": "2.6.1.2"
      },
      {
        "model": "project snort",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "snort",
        "version": "2.6.1.1"
      },
      {
        "model": "project snort",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "snort",
        "version": "2.6.1"
      },
      {
        "model": "project snort beta",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "snort",
        "version": "2.7.01"
      },
      {
        "model": "opensuse",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "s u s e",
        "version": "10.1"
      },
      {
        "model": "fedora core7",
        "scope": null,
        "trust": 0.3,
        "vendor": "redhat",
        "version": null
      },
      {
        "model": "enterprise linux as",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "redhat",
        "version": "4"
      },
      {
        "model": "networks threat protection system intrusion sensor",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "nortel",
        "version": "4.1"
      },
      {
        "model": "networks threat protection system intrusion sensor",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "nortel",
        "version": "4.6"
      },
      {
        "model": "networks threat protection system intrusion sensor",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "nortel",
        "version": "4.5"
      },
      {
        "model": "networks threat protection system defense center",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "nortel",
        "version": "4.1"
      },
      {
        "model": "networks threat protection system defense center",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "nortel",
        "version": "4.6"
      },
      {
        "model": "networks threat protection system defense center",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "nortel",
        "version": "4.5"
      },
      {
        "model": "net-analyzer/snort",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "gentoo",
        "version": "2.6.1"
      },
      {
        "model": "linux sparc",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "debian",
        "version": "4.0"
      },
      {
        "model": "linux s/390",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "debian",
        "version": "4.0"
      },
      {
        "model": "linux powerpc",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "debian",
        "version": "4.0"
      },
      {
        "model": "linux mipsel",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "debian",
        "version": "4.0"
      },
      {
        "model": "linux mips",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "debian",
        "version": "4.0"
      },
      {
        "model": "linux m68k",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "debian",
        "version": "4.0"
      },
      {
        "model": "linux ia-64",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "debian",
        "version": "4.0"
      },
      {
        "model": "linux ia-32",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "debian",
        "version": "4.0"
      },
      {
        "model": "linux hppa",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "debian",
        "version": "4.0"
      },
      {
        "model": "linux arm",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "debian",
        "version": "4.0"
      },
      {
        "model": "linux amd64",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "debian",
        "version": "4.0"
      },
      {
        "model": "linux alpha",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "debian",
        "version": "4.0"
      },
      {
        "model": "linux",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "debian",
        "version": "4.0"
      },
      {
        "model": "project snort",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "snort",
        "version": "2.6.1.3"
      },
      {
        "model": "net-analyzer/snort",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "gentoo",
        "version": "2.6.1.3"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#196240"
      },
      {
        "db": "BID",
        "id": "22616"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-000170"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200702-347"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-5276"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:snort:snort:2.6.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:snort:snort:2.6.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sourcefire:intrusion_sensor:4.6:*:crossbeam:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "2.6.1.2",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sourcefire:intrusion_sensor:4.5:*:crossbeam:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sourcefire:intrusion_sensor:4.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:snort:snort:2.7_beta1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sourcefire:intrusion_sensor:4.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sourcefire:intrusion_sensor:4.1:*:crossbeam:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sourcefire:intrusion_sensor:4.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2006-5276"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Neel Mehta",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200702-347"
      }
    ],
    "trust": 0.6
  },
  "cve": "CVE-2006-5276",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "obtainAllPrivilege": true,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "HIGH",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Low",
            "accessVector": "Network",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "Complete",
            "baseScore": 10.0,
            "confidentialityImpact": "Complete",
            "exploitabilityScore": null,
            "id": "CVE-2006-5276",
            "impactScore": null,
            "integrityImpact": "Complete",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "High",
            "trust": 0.9,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "VHN-21384",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:C/I:C/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2006-5276",
            "trust": 1.8,
            "value": "HIGH"
          },
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#196240",
            "trust": 0.8,
            "value": "23.63"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-200702-347",
            "trust": 0.6,
            "value": "CRITICAL"
          },
          {
            "author": "VULHUB",
            "id": "VHN-21384",
            "trust": 0.1,
            "value": "HIGH"
          },
          {
            "author": "VULMON",
            "id": "CVE-2006-5276",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#196240"
      },
      {
        "db": "VULHUB",
        "id": "VHN-21384"
      },
      {
        "db": "VULMON",
        "id": "CVE-2006-5276"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-000170"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200702-347"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-5276"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic. Snort IDS and Sourcefire Intrusion Sensor are prone to a stack-based buffer-overflow vulnerability because the network intrusion detection (NID) systems fail to handle specially crafted \u0027DCE\u0027 and \u0027RPC\u0027 network packets. \nAn attacker can exploit this issue to execute malicious code in the context of the user running the affected application. Failed attempts will likely cause these applications to crash. The software provides functions such as packet sniffing, packet analysis, and packet inspection. \n-----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n\n                     National Cyber Alert System\n\n               Technical Cyber Security Alert TA07-050A\n\n\nSourcefire Snort DCE/RPC Preprocessor Buffer Overflow\n\n   Original release date: February 19, 2007\n   Last revised: --\n   Source: US-CERT\n\n\nSystems Affected\n\n     * Snort 2.6.1, 2.6.1.1, and 2.6.1.2\n     * Snort 2.7.0 beta 1\n     * Sourcefire Intrusion Sensors version 4.1.x, 4.5.x, and 4.6x with\n       SEUs prior to SEU 64\n     * Sourcefire Intrusion Sensors for Crossbeam version 4.1.x, 4.5.x,\n       and 4.6x with SEUs prior to SEU 64\n\n   Other products that use Snort or Snort components may be affected. \n\n\nI. The DCE/RPC\n   preprocessor reassembles fragmented SMB and DCE/RPC traffic before\n   passing data to the Snort rules. \n\n   The vulnerable code does not properly reassemble certain types of\n   SMB and DCE/RPC packets. An attacker could exploit this\n   vulnerability by sending a specially crafted TCP packet to a host\n   or network monitored by Snort. The DCE/RPC preprocessor is enabled\n   by default, and it is not necessary for an attacker to complete a\n   TCP handshake. \n\n   US-CERT is tracking this vulnerability as VU#196240. This\n   vulnerability has been assigned CVE number CVE-2006-5276. Further\n   information is available in advisories from Sourcefire and ISS. \n\n\nII. \n\n\nIII. Solution\n\nUpgrade\n\n   Snort 2.6.1.3 is available from the Snort download site. Sourcefire\n   customers should visit the Sourcefire Support Login site. \n\nDisable the DCE/RPC Preprocessor\n\n   To disable the DCE/RPC preprocessor, comment out the line that loads\n   the preprocessor in the Snort configuration file (typically\n   /etc/snort.conf on UNIX and Linux systems):\n\n     [/etc/snort.conf]\n     ... \n     #preprocessor dcerpc... \n   \n   Restart Snort for the change to take effect. \n\n   Disabling the preprocessor will prevent Snort from reassembling\n   fragmented SMB and DCE/RPC packets. This may allow attacks to evade\n   the IDS. \n\n\nIV. References\n\n     * US-CERT Vulnerability Note VU#196240 -\n       \u003chttp://www.kb.cert.org/vuls/id/196240\u003e\n\n     * Sourcefire Advisory 2007-02-19 -\n       \u003chttp://www.snort.org/docs/advisory-2007-02-19.html\u003e\n\n     * Sourcefire Support Login - \u003chttps://support.sourcefire.com/\u003e\n\n     * Sourcefire Snort Release Notes for 2.6.1.3 -\n       \u003chttp://www.snort.org/docs/release_notes/release_notes_2613.txt\u003e\n\n     * Snort downloads - \u003chttp://www.snort.org/dl/\u003e\n\n     * DCE/RPC Preprocessor -\n       \u003chttp://www.snort.org/docs/snort_htmanuals/htmanual_261/node104.html\u003e\n\n     * IBM Internet Security Systems Protection Advisory -\n       \u003chttp://iss.net/threats/257.html\u003e\n\n     * CVE-2006-5276 -\n       \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-5276\u003e\n\n\n ____________________________________________________________________\n\n   The most recent version of this document can be found at:\n\n     \u003chttp://www.us-cert.gov/cas/techalerts/TA07-050A.html\u003e\n ____________________________________________________________________\n\n   Feedback can be directed to US-CERT Technical Staff. Please send\n   email to \u003ccert@cert.org\u003e with \"TA07-050A Feedback VU#196240\" in the\n   subject. \n ____________________________________________________________________\n\n   For instructions on subscribing to or unsubscribing from this\n   mailing list, visit \u003chttp://www.us-cert.gov/cas/signup.html\u003e. \n ____________________________________________________________________\n\n   Produced 2007 by US-CERT, a government organization. \n\n   Terms of use:\n\n     \u003chttp://www.us-cert.gov/legal.html\u003e\n ____________________________________________________________________\n\n\nRevision History\n\n   February 19, 2007:  Initial Release\n\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.2.1 (GNU/Linux)\n\niQEVAwUBRdop4+xOF3G+ig+rAQKdtAgAhQY66LRfVlNkH30Q5RI0gIo5Vhu14yDP\nqulLEyzjDhC7gDHWBGQYdE9eCy9Yf3P4BfKJS0766he/7CFn+BaDs7ohnXaynHQq\n+kMYNBMBg2RbrGKfOGRLHc0P6X1tSP3w45IppjOv9Yo5SUVDCa7beZWURCIKZyp6\nOuYXtnpiGNctHgeU56US0sfuKj8qP7KOd9pCDRDQRhJ3UUd9wDpXee66HBxchh+w\nRSIQiMxisOX9mMYBW3z4DM/lb7PxXoa2Q7DwjM1NIOe/0tAObCOvF4uYhOLCVyNg\n+EbcN9123V0PW95FITlHXvJU6K8srnnK+Fhpfyi4vg5bYeEF2WiUrg==\n=T7v8\n-----END PGP SIGNATURE-----\n. February 19, 2007\n\nSummary:\n\nSourcefire has learned of a remotely exploitable vulnerability in the \nSnort DCE/RPC preprocessor. Sourcefire \nhas prepared updates for Snort open-source software to address this issue. \n\n\nMitigating Factors:\n\nUsers who have disabled the DCE/RPC preprocessor are not vulnerable. \n\n\nRecommended Actions:\n\n* Open-source Snort 2.6.1.x users are advised to upgrade to Snort \n2.6.1.3 (or later) immediately. \n* Open-source Snort 2.7 beta users are advised to mitigate this issue by \ndisabling the DCE/RPC preprocessor. \n   This issue will be resolved in Snort 2.7 beta 2. \n\n\nWorkarounds:\n\nSnort users who cannot upgrade immediately are advised to disable the \nDCE/RPC preprocessor by removing the DCE/RPC preprocessor directives \nfrom snort.conf and restarting Snort. However, be advised that disabling \nthe DCE/RPC preprocessor reduces detection capabilities for attacks in \nDCE/RPC traffic. After upgrading, customers should reenable the DCE/RPC \npreprocessor. \n\n\nDetecting Attacks Against This Vulnerability:\n\nSourcefire will be releasing a rule pack that provides detection for \nattacks against this vulnerability. \n\nHas Sourcefire received any reports that this vulnerability has been \nexploited?\n- No. Sourcefire has not received any reports that this vulnerability \nhas been exploited. \n\n\nAcknowledgments:\n\nSourcefire would like to thank Neel Mehta from IBM X-Force for reporting \nthis issue and working with us to resolve it. \n\n\n-------------------------------------------------------------------------\nTake Surveys. Earn Cash. Influence the Future of IT\nJoin SourceForge.net\u0027s Techsay panel and you\u0027ll get the chance to share your\nopinions on IT \u0026 business topics through brief surveys-and earn cash\nhttp://www.techsay.com/default.php?page=join.php\u0026p=sourceforge\u0026CID=DEVDEV\n_______________________________________________\nSnort-announce mailing list\nSnort-announce@lists.sourceforge.net\nhttps://lists.sourceforge.net/lists/listinfo/snort-announce\n. \n\nResolution\n==========\n\nAll Snort users should upgrade to the latest version:\n\n    # emerge --sync\n    # emerge --ask --oneshot --verbose \"\u003e=net-analyzer/snort-2.6.1.3\"\n\nReferences\n==========\n\n  [ 1 ] CVE-2006-5276\n        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5276\n\nAvailability\n============\n\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n  http://security.gentoo.org/glsa/glsa-200703-01.xml\n\nConcerns?\n=========\n\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttp://bugs.gentoo.org. \n\nLicense\n=======\n\nCopyright 2007 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttp://creativecommons.org/licenses/by-sa/2.5\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2006-5276"
      },
      {
        "db": "CERT/CC",
        "id": "VU#196240"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-000170"
      },
      {
        "db": "BID",
        "id": "22616"
      },
      {
        "db": "VULHUB",
        "id": "VHN-21384"
      },
      {
        "db": "VULMON",
        "id": "CVE-2006-5276"
      },
      {
        "db": "PACKETSTORM",
        "id": "54569"
      },
      {
        "db": "PACKETSTORM",
        "id": "54522"
      },
      {
        "db": "PACKETSTORM",
        "id": "54834"
      }
    ],
    "trust": 3.06
  },
  "exploit_availability": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "reference": "https://vulmon.com/exploitdetails?qidtp=exploitdb\u0026qid=3609",
        "trust": 0.4,
        "type": "exploit"
      },
      {
        "reference": "https://www.scap.org.cn/vuln/vhn-21384",
        "trust": 0.1,
        "type": "unknown"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-21384"
      },
      {
        "db": "VULMON",
        "id": "CVE-2006-5276"
      }
    ]
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#196240",
        "trust": 3.8
      },
      {
        "db": "NVD",
        "id": "CVE-2006-5276",
        "trust": 3.2
      },
      {
        "db": "BID",
        "id": "22616",
        "trust": 2.9
      },
      {
        "db": "USCERT",
        "id": "TA07-050A",
        "trust": 2.7
      },
      {
        "db": "SECUNIA",
        "id": "24272",
        "trust": 2.6
      },
      {
        "db": "SECUNIA",
        "id": "24190",
        "trust": 2.6
      },
      {
        "db": "SECUNIA",
        "id": "24235",
        "trust": 2.6
      },
      {
        "db": "SECUNIA",
        "id": "24239",
        "trust": 1.8
      },
      {
        "db": "SECUNIA",
        "id": "26746",
        "trust": 1.8
      },
      {
        "db": "SECUNIA",
        "id": "24240",
        "trust": 1.8
      },
      {
        "db": "SECTRACK",
        "id": "1017669",
        "trust": 1.8
      },
      {
        "db": "SECTRACK",
        "id": "1017670",
        "trust": 1.8
      },
      {
        "db": "EXPLOIT-DB",
        "id": "3362",
        "trust": 1.8
      },
      {
        "db": "VUPEN",
        "id": "ADV-2007-0668",
        "trust": 1.8
      },
      {
        "db": "VUPEN",
        "id": "ADV-2007-0656",
        "trust": 1.8
      },
      {
        "db": "OSVDB",
        "id": "32094",
        "trust": 1.8
      },
      {
        "db": "XF",
        "id": "31275",
        "trust": 1.4
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-000170",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200702-347",
        "trust": 0.7
      },
      {
        "db": "CERT/CC",
        "id": "TA07-050A",
        "trust": 0.6
      },
      {
        "db": "GENTOO",
        "id": "GLSA-200703-01",
        "trust": 0.6
      },
      {
        "db": "MILW0RM",
        "id": "3362",
        "trust": 0.6
      },
      {
        "db": "ISS",
        "id": "20070219 SOURCEFIRE SNORT REMOTE BUFFER OVERFLOW",
        "trust": 0.6
      },
      {
        "db": "BUGTRAQ",
        "id": "20070303 ERRATA: [ GLSA 200703-01 ] SNORT: REMOTE EXECUTION OF ARBITRARY CODE",
        "trust": 0.6
      },
      {
        "db": "FEDORA",
        "id": "FEDORA-2007-2060",
        "trust": 0.6
      },
      {
        "db": "EXPLOIT-DB",
        "id": "3609",
        "trust": 0.2
      },
      {
        "db": "PACKETSTORM",
        "id": "54522",
        "trust": 0.2
      },
      {
        "db": "PACKETSTORM",
        "id": "54569",
        "trust": 0.2
      },
      {
        "db": "PACKETSTORM",
        "id": "54834",
        "trust": 0.2
      },
      {
        "db": "SEEBUG",
        "id": "SSVID-72771",
        "trust": 0.1
      },
      {
        "db": "EXPLOIT-DB",
        "id": "18723",
        "trust": 0.1
      },
      {
        "db": "EXPLOIT-DB",
        "id": "3391",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "111677",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "54632",
        "trust": 0.1
      },
      {
        "db": "VULHUB",
        "id": "VHN-21384",
        "trust": 0.1
      },
      {
        "db": "VULMON",
        "id": "CVE-2006-5276",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#196240"
      },
      {
        "db": "VULHUB",
        "id": "VHN-21384"
      },
      {
        "db": "VULMON",
        "id": "CVE-2006-5276"
      },
      {
        "db": "BID",
        "id": "22616"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-000170"
      },
      {
        "db": "PACKETSTORM",
        "id": "54569"
      },
      {
        "db": "PACKETSTORM",
        "id": "54522"
      },
      {
        "db": "PACKETSTORM",
        "id": "54834"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200702-347"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-5276"
      }
    ]
  },
  "id": "VAR-200702-0378",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-21384"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2024-07-23T22:43:25.614000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "Latest changelog : 2.6.1.3",
        "trust": 0.8,
        "url": "http://www.snort.org/dl/"
      },
      {
        "title": "2007-02-19 Sourcefire Advisory: Vulnerability in Snort DCE/RPC Preprocessor",
        "trust": 0.8,
        "url": "http://www.snort.org/docs/advisory-2007-02-19.html"
      },
      {
        "title": "Sourcefire Support Login",
        "trust": 0.8,
        "url": "https://support.sourcefire.com/"
      },
      {
        "title": "Top Page",
        "trust": 0.8,
        "url": "http://www.sourcefire.com/"
      },
      {
        "title": "Detection for Vulnerability in Snort DCE/RPC Pre-processor",
        "trust": 0.8,
        "url": "http://www.sourcefire.com/services/advisories/sa022007.html"
      },
      {
        "title": "vrt-rules-2007-02-20",
        "trust": 0.8,
        "url": "http://www.snort.org/vrt/advisories/vrt-rules-2007-02-20.html"
      },
      {
        "title": "LinuxFlaw",
        "trust": 0.1,
        "url": "https://github.com/mudongliang/linuxflaw "
      }
    ],
    "sources": [
      {
        "db": "VULMON",
        "id": "CVE-2006-5276"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-000170"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "NVD-CWE-Other",
        "trust": 1.0
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2006-5276"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 3.0,
        "url": "http://www.kb.cert.org/vuls/id/196240"
      },
      {
        "trust": 2.9,
        "url": "http://www.snort.org/docs/advisory-2007-02-19.html"
      },
      {
        "trust": 2.6,
        "url": "http://iss.net/threats/257.html"
      },
      {
        "trust": 2.6,
        "url": "http://www.securityfocus.com/bid/22616"
      },
      {
        "trust": 2.6,
        "url": "http://www.us-cert.gov/cas/techalerts/ta07-050a.html"
      },
      {
        "trust": 1.9,
        "url": "http://security.gentoo.org/glsa/glsa-200703-01.xml"
      },
      {
        "trust": 1.8,
        "url": "http://www116.nortelnetworks.com/pub/repository/clarify/document/2007/08/021923-01.pdf"
      },
      {
        "trust": 1.8,
        "url": "http://fedoranews.org/updates/fedora-2007-206.shtml"
      },
      {
        "trust": 1.8,
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=229265"
      },
      {
        "trust": 1.8,
        "url": "http://www.osvdb.org/32094"
      },
      {
        "trust": 1.8,
        "url": "http://www.securitytracker.com/id?1017669"
      },
      {
        "trust": 1.8,
        "url": "http://www.securitytracker.com/id?1017670"
      },
      {
        "trust": 1.8,
        "url": "http://secunia.com/advisories/24190"
      },
      {
        "trust": 1.8,
        "url": "http://secunia.com/advisories/24235"
      },
      {
        "trust": 1.8,
        "url": "http://secunia.com/advisories/24239"
      },
      {
        "trust": 1.8,
        "url": "http://secunia.com/advisories/24240"
      },
      {
        "trust": 1.8,
        "url": "http://secunia.com/advisories/24272"
      },
      {
        "trust": 1.8,
        "url": "http://secunia.com/advisories/26746"
      },
      {
        "trust": 1.7,
        "url": "http://www130.nortelnetworks.com/go/main.jsp?cscat=bltndetail\u0026documentoid=540173"
      },
      {
        "trust": 1.4,
        "url": "http://xforce.iss.net/xforce/xfdb/31275"
      },
      {
        "trust": 1.2,
        "url": "http://www.securityfocus.com/archive/1/461810/100/0/threaded"
      },
      {
        "trust": 1.2,
        "url": "https://www.exploit-db.com/exploits/3362"
      },
      {
        "trust": 1.2,
        "url": "http://www.vupen.com/english/advisories/2007/0656"
      },
      {
        "trust": 1.2,
        "url": "http://www.vupen.com/english/advisories/2007/0668"
      },
      {
        "trust": 1.2,
        "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31275"
      },
      {
        "trust": 0.9,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-5276"
      },
      {
        "trust": 0.8,
        "url": "https://support.sourcefire.com/"
      },
      {
        "trust": 0.8,
        "url": "http://www.snort.org/docs/snort_htmanuals/htmanual_261/node104.html"
      },
      {
        "trust": 0.8,
        "url": "http://www.snort.org/docs/release_notes/release_notes_2613.txt"
      },
      {
        "trust": 0.8,
        "url": "http://www.snort.org/dl/"
      },
      {
        "trust": 0.8,
        "url": "http://secunia.com/advisories/24235/"
      },
      {
        "trust": 0.8,
        "url": "http://secunia.com/advisories/24190/"
      },
      {
        "trust": 0.8,
        "url": "http://secunia.com/advisories/24272/"
      },
      {
        "trust": 0.8,
        "url": "http://jvn.jp/cert/jvnta07-050a/index.html"
      },
      {
        "trust": 0.8,
        "url": "http://jvn.jp/tr/trta07-050a/index.html"
      },
      {
        "trust": 0.8,
        "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2006-5276"
      },
      {
        "trust": 0.6,
        "url": "http://www.securityfocus.com/archive/1/archive/1/461810/100/0/threaded"
      },
      {
        "trust": 0.6,
        "url": "http://www.milw0rm.com/exploits/3362"
      },
      {
        "trust": 0.6,
        "url": "http://www.frsirt.com/english/advisories/2007/0668"
      },
      {
        "trust": 0.6,
        "url": "http://www.frsirt.com/english/advisories/2007/0656"
      },
      {
        "trust": 0.3,
        "url": "https://www.it-isac.org/postings/cyber/alertdetail.php?id=4108\u0026menutype=menupublic"
      },
      {
        "trust": 0.3,
        "url": "http://www.snort.org/"
      },
      {
        "trust": 0.3,
        "url": "http://www130.nortelnetworks.com/go/main.jsp?cscat=bltndetail\u0026documentoid=540173\u0026renditionid=\u0026poid=null"
      },
      {
        "trust": 0.3,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2006-5276"
      },
      {
        "trust": 0.1,
        "url": "http://www130.nortelnetworks.com/go/main.jsp?cscat=bltndetail\u0026amp;documentoid=540173"
      },
      {
        "trust": 0.1,
        "url": "https://cwe.mitre.org/data/definitions/.html"
      },
      {
        "trust": 0.1,
        "url": "https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2006-5276"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov"
      },
      {
        "trust": 0.1,
        "url": "https://www.rapid7.com/db/modules/exploit/multi/ids/snort_dce_rpc"
      },
      {
        "trust": 0.1,
        "url": "https://www.exploit-db.com/exploits/3609/"
      },
      {
        "trust": 0.1,
        "url": "http://www.snort.org/docs/snort_htmanuals/htmanual_261/node104.html\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://www.us-cert.gov/cas/techalerts/ta07-050a.html\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://iss.net/threats/257.html\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://www.us-cert.gov/cas/signup.html\u003e."
      },
      {
        "trust": 0.1,
        "url": "https://support.sourcefire.com/\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://www.kb.cert.org/vuls/id/196240\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://www.snort.org/dl/\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-5276\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://www.us-cert.gov/legal.html\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://www.snort.org/docs/advisory-2007-02-19.html\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://www.snort.org/docs/release_notes/release_notes_2613.txt\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://www.techsay.com/default.php?page=join.php\u0026p=sourceforge\u0026cid=devdev"
      },
      {
        "trust": 0.1,
        "url": "https://lists.sourceforge.net/lists/listinfo/snort-announce"
      },
      {
        "trust": 0.1,
        "url": "http://bugs.gentoo.org."
      },
      {
        "trust": 0.1,
        "url": "http://creativecommons.org/licenses/by-sa/2.5"
      },
      {
        "trust": 0.1,
        "url": "http://security.gentoo.org/"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#196240"
      },
      {
        "db": "VULHUB",
        "id": "VHN-21384"
      },
      {
        "db": "VULMON",
        "id": "CVE-2006-5276"
      },
      {
        "db": "BID",
        "id": "22616"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-000170"
      },
      {
        "db": "PACKETSTORM",
        "id": "54569"
      },
      {
        "db": "PACKETSTORM",
        "id": "54522"
      },
      {
        "db": "PACKETSTORM",
        "id": "54834"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200702-347"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-5276"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#196240"
      },
      {
        "db": "VULHUB",
        "id": "VHN-21384"
      },
      {
        "db": "VULMON",
        "id": "CVE-2006-5276"
      },
      {
        "db": "BID",
        "id": "22616"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-000170"
      },
      {
        "db": "PACKETSTORM",
        "id": "54569"
      },
      {
        "db": "PACKETSTORM",
        "id": "54522"
      },
      {
        "db": "PACKETSTORM",
        "id": "54834"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200702-347"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-5276"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2007-02-19T00:00:00",
        "db": "CERT/CC",
        "id": "VU#196240"
      },
      {
        "date": "2007-02-20T00:00:00",
        "db": "VULHUB",
        "id": "VHN-21384"
      },
      {
        "date": "2007-02-20T00:00:00",
        "db": "VULMON",
        "id": "CVE-2006-5276"
      },
      {
        "date": "2007-02-19T00:00:00",
        "db": "BID",
        "id": "22616"
      },
      {
        "date": "2007-04-01T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2007-000170"
      },
      {
        "date": "2007-02-23T03:05:45",
        "db": "PACKETSTORM",
        "id": "54569"
      },
      {
        "date": "2007-02-20T01:23:04",
        "db": "PACKETSTORM",
        "id": "54522"
      },
      {
        "date": "2007-03-06T06:25:25",
        "db": "PACKETSTORM",
        "id": "54834"
      },
      {
        "date": "2007-02-19T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200702-347"
      },
      {
        "date": "2007-02-20T01:28:00",
        "db": "NVD",
        "id": "CVE-2006-5276"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2008-01-30T00:00:00",
        "db": "CERT/CC",
        "id": "VU#196240"
      },
      {
        "date": "2018-10-17T00:00:00",
        "db": "VULHUB",
        "id": "VHN-21384"
      },
      {
        "date": "2018-10-17T00:00:00",
        "db": "VULMON",
        "id": "CVE-2006-5276"
      },
      {
        "date": "2007-11-15T00:38:00",
        "db": "BID",
        "id": "22616"
      },
      {
        "date": "2007-04-01T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2007-000170"
      },
      {
        "date": "2007-05-16T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200702-347"
      },
      {
        "date": "2018-10-17T21:41:57.483000",
        "db": "NVD",
        "id": "CVE-2006-5276"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "PACKETSTORM",
        "id": "54569"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200702-347"
      }
    ],
    "trust": 0.7
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Sourcefire Snort DCE/RPC preprocessor does not properly reassemble fragmented packets",
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#196240"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "buffer overflow",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200702-347"
      }
    ],
    "trust": 0.6
  }
}

GSD-2006-5276

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2006-5276

Aliases

CVE-2006-5276

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2006-5276",
    "description": "Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic.",
    "id": "GSD-2006-5276",
    "references": [
      "https://www.suse.com/security/cve/CVE-2006-5276.html",
      "https://packetstormsecurity.com/files/cve/CVE-2006-5276"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2006-5276"
      ],
      "details": "Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic.",
      "id": "GSD-2006-5276",
      "modified": "2023-12-13T01:19:56.683311Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2006-5276",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "TA07-050A",
            "refsource": "CERT",
            "url": "http://www.us-cert.gov/cas/techalerts/TA07-050A.html"
          },
          {
            "name": "VU#196240",
            "refsource": "CERT-VN",
            "url": "http://www.kb.cert.org/vuls/id/196240"
          },
          {
            "name": "http://www116.nortelnetworks.com/pub/repository/CLARIFY/DOCUMENT/2007/08/021923-01.pdf",
            "refsource": "CONFIRM",
            "url": "http://www116.nortelnetworks.com/pub/repository/CLARIFY/DOCUMENT/2007/08/021923-01.pdf"
          },
          {
            "name": "GLSA-200703-01",
            "refsource": "GENTOO",
            "url": "http://security.gentoo.org/glsa/glsa-200703-01.xml"
          },
          {
            "name": "26746",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/26746"
          },
          {
            "name": "20070303 ERRATA: [ GLSA 200703-01 ] Snort: Remote execution of arbitrary code",
            "refsource": "BUGTRAQ",
            "url": "http://www.securityfocus.com/archive/1/461810/100/0/threaded"
          },
          {
            "name": "24190",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24190"
          },
          {
            "name": "http://www.snort.org/docs/advisory-2007-02-19.html",
            "refsource": "CONFIRM",
            "url": "http://www.snort.org/docs/advisory-2007-02-19.html"
          },
          {
            "name": "24239",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24239"
          },
          {
            "name": "24272",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24272"
          },
          {
            "name": "ADV-2007-0656",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2007/0656"
          },
          {
            "name": "smb-bo(31275)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31275"
          },
          {
            "name": "FEDORA-2007-2060",
            "refsource": "FEDORA",
            "url": "http://fedoranews.org/updates/FEDORA-2007-206.shtml"
          },
          {
            "name": "ADV-2007-0668",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2007/0668"
          },
          {
            "name": "32094",
            "refsource": "OSVDB",
            "url": "http://www.osvdb.org/32094"
          },
          {
            "name": "24235",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24235"
          },
          {
            "name": "1017670",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id?1017670"
          },
          {
            "name": "24240",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24240"
          },
          {
            "name": "20070219 Sourcefire Snort Remote Buffer Overflow",
            "refsource": "ISS",
            "url": "http://iss.net/threats/257.html"
          },
          {
            "name": "22616",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/22616"
          },
          {
            "name": "http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL\u0026DocumentOID=540173",
            "refsource": "CONFIRM",
            "url": "http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL\u0026DocumentOID=540173"
          },
          {
            "name": "3362",
            "refsource": "EXPLOIT-DB",
            "url": "https://www.exploit-db.com/exploits/3362"
          },
          {
            "name": "https://bugzilla.redhat.com/show_bug.cgi?id=229265",
            "refsource": "MISC",
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=229265"
          },
          {
            "name": "1017669",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id?1017669"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:snort:snort:2.6.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:snort:snort:2.6.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sourcefire:intrusion_sensor:4.6:*:crossbeam:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "2.6.1.2",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sourcefire:intrusion_sensor:4.5:*:crossbeam:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sourcefire:intrusion_sensor:4.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:snort:snort:2.7_beta1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sourcefire:intrusion_sensor:4.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sourcefire:intrusion_sensor:4.1:*:crossbeam:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sourcefire:intrusion_sensor:4.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-5276"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20070219 Sourcefire Snort Remote Buffer Overflow",
              "refsource": "ISS",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://iss.net/threats/257.html"
            },
            {
              "name": "http://www.snort.org/docs/advisory-2007-02-19.html",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://www.snort.org/docs/advisory-2007-02-19.html"
            },
            {
              "name": "TA07-050A",
              "refsource": "CERT",
              "tags": [
                "Third Party Advisory",
                "US Government Resource"
              ],
              "url": "http://www.us-cert.gov/cas/techalerts/TA07-050A.html"
            },
            {
              "name": "http://www116.nortelnetworks.com/pub/repository/CLARIFY/DOCUMENT/2007/08/021923-01.pdf",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www116.nortelnetworks.com/pub/repository/CLARIFY/DOCUMENT/2007/08/021923-01.pdf"
            },
            {
              "name": "http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL\u0026DocumentOID=540173",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL\u0026DocumentOID=540173"
            },
            {
              "name": "GLSA-200703-01",
              "refsource": "GENTOO",
              "tags": [],
              "url": "http://security.gentoo.org/glsa/glsa-200703-01.xml"
            },
            {
              "name": "32094",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://www.osvdb.org/32094"
            },
            {
              "name": "1017669",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://www.securitytracker.com/id?1017669"
            },
            {
              "name": "1017670",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://www.securitytracker.com/id?1017670"
            },
            {
              "name": "24190",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/24190"
            },
            {
              "name": "24235",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/24235"
            },
            {
              "name": "24239",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/24239"
            },
            {
              "name": "24240",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/24240"
            },
            {
              "name": "24272",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/24272"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=229265",
              "refsource": "MISC",
              "tags": [],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=229265"
            },
            {
              "name": "FEDORA-2007-2060",
              "refsource": "FEDORA",
              "tags": [],
              "url": "http://fedoranews.org/updates/FEDORA-2007-206.shtml"
            },
            {
              "name": "VU#196240",
              "refsource": "CERT-VN",
              "tags": [
                "US Government Resource"
              ],
              "url": "http://www.kb.cert.org/vuls/id/196240"
            },
            {
              "name": "22616",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/22616"
            },
            {
              "name": "26746",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/26746"
            },
            {
              "name": "ADV-2007-0668",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2007/0668"
            },
            {
              "name": "ADV-2007-0656",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2007/0656"
            },
            {
              "name": "smb-bo(31275)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31275"
            },
            {
              "name": "3362",
              "refsource": "EXPLOIT-DB",
              "tags": [],
              "url": "https://www.exploit-db.com/exploits/3362"
            },
            {
              "name": "20070303 ERRATA: [ GLSA 200703-01 ] Snort: Remote execution of arbitrary code",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/461810/100/0/threaded"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 10.0,
          "obtainAllPrivilege": true,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2018-10-17T21:41Z",
      "publishedDate": "2007-02-20T01:28Z"
    }
  }
}

FKIE_CVE-2006-5276

Vulnerability from fkie_nvd - Published: 2007-02-20 01:28 - Updated: 2025-04-09 00:30

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://fedoranews.org/updates/FEDORA-2007-206.shtml
cve@mitre.org	http://iss.net/threats/257.html	Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/24190
cve@mitre.org	http://secunia.com/advisories/24235
cve@mitre.org	http://secunia.com/advisories/24239
cve@mitre.org	http://secunia.com/advisories/24240
cve@mitre.org	http://secunia.com/advisories/24272
cve@mitre.org	http://secunia.com/advisories/26746
cve@mitre.org	http://security.gentoo.org/glsa/glsa-200703-01.xml
cve@mitre.org	http://www.kb.cert.org/vuls/id/196240	US Government Resource
cve@mitre.org	http://www.osvdb.org/32094
cve@mitre.org	http://www.securityfocus.com/archive/1/461810/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/bid/22616
cve@mitre.org	http://www.securitytracker.com/id?1017669
cve@mitre.org	http://www.securitytracker.com/id?1017670
cve@mitre.org	http://www.snort.org/docs/advisory-2007-02-19.html	Vendor Advisory
cve@mitre.org	http://www.us-cert.gov/cas/techalerts/TA07-050A.html	Third Party Advisory, US Government Resource
cve@mitre.org	http://www.vupen.com/english/advisories/2007/0656
cve@mitre.org	http://www.vupen.com/english/advisories/2007/0668
cve@mitre.org	http://www116.nortelnetworks.com/pub/repository/CLARIFY/DOCUMENT/2007/08/021923-01.pdf
cve@mitre.org	http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=540173
cve@mitre.org	https://bugzilla.redhat.com/show_bug.cgi?id=229265
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/31275
cve@mitre.org	https://www.exploit-db.com/exploits/3362
af854a3a-2127-422b-91ae-364da2661108	http://fedoranews.org/updates/FEDORA-2007-206.shtml
af854a3a-2127-422b-91ae-364da2661108	http://iss.net/threats/257.html	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24190
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24235
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24239
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24240
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24272
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/26746
af854a3a-2127-422b-91ae-364da2661108	http://security.gentoo.org/glsa/glsa-200703-01.xml
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/196240	US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.osvdb.org/32094
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/461810/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/22616
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id?1017669
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id?1017670
af854a3a-2127-422b-91ae-364da2661108	http://www.snort.org/docs/advisory-2007-02-19.html	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.us-cert.gov/cas/techalerts/TA07-050A.html	Third Party Advisory, US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2007/0656
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2007/0668
af854a3a-2127-422b-91ae-364da2661108	http://www116.nortelnetworks.com/pub/repository/CLARIFY/DOCUMENT/2007/08/021923-01.pdf
af854a3a-2127-422b-91ae-364da2661108	http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=540173
af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.redhat.com/show_bug.cgi?id=229265
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/31275
af854a3a-2127-422b-91ae-364da2661108	https://www.exploit-db.com/exploits/3362

Impacted products

Vendor	Product	Version
snort	snort	*
snort	snort	2.6.1
snort	snort	2.6.1.1
snort	snort	2.7_beta1
sourcefire	intrusion_sensor	4.1
sourcefire	intrusion_sensor	4.1
sourcefire	intrusion_sensor	4.5
sourcefire	intrusion_sensor	4.5
sourcefire	intrusion_sensor	4.6
sourcefire	intrusion_sensor	4.6

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "049CC20E-A8C9-423D-BA17-87F3B21C3964",
              "versionEndIncluding": "2.6.1.2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:snort:snort:2.6.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "D28E9711-C9BB-4351-A6C3-0DDB26BC4ECC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:snort:snort:2.6.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "1B8F630B-DD44-4095-B90D-2D18CD321580",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:snort:snort:2.7_beta1:*:*:*:*:*:*:*",
              "matchCriteriaId": "9C41D0F1-BDB9-4F50-81CF-F5DF07770DDF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sourcefire:intrusion_sensor:4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "1E24DE19-7B69-495F-804E-DFE57AA2FBA7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sourcefire:intrusion_sensor:4.1:*:crossbeam:*:*:*:*:*",
              "matchCriteriaId": "249CE671-2731-4FA3-B689-08AB3EFA4C87",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sourcefire:intrusion_sensor:4.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "C0EC7DB1-D00A-4559-8A83-38C4C1666CEC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sourcefire:intrusion_sensor:4.5:*:crossbeam:*:*:*:*:*",
              "matchCriteriaId": "F2085309-7B4F-4425-83E3-978A801BA38A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sourcefire:intrusion_sensor:4.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "21B02137-1C99-41A5-8E5F-42C033CB8A2C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sourcefire:intrusion_sensor:4.6:*:crossbeam:*:*:*:*:*",
              "matchCriteriaId": "E8E96C7F-8F66-4385-88D5-DE0878A2FFBE",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de b\u00fafer en el preprocesador DCE/RPC en Snort anterior a 2.6.1.3, y 2.7 anterior a beta 2; y Sourcefire Intrusion Sensor;permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n mediante tr\u00e1fico SMB manipulado."
    }
  ],
  "evaluatorComment": "All affected Sourcefire Intrustion Sensor products are only vulnerable if they are used with SEUs prior to SEU 64.",
  "evaluatorSolution": "Upgrade to the latest version of Snort (2.6.1.3 or later), available from the Snort Web site.",
  "id": "CVE-2006-5276",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": true,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2007-02-20T01:28:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://fedoranews.org/updates/FEDORA-2007-206.shtml"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://iss.net/threats/257.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/24190"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/24235"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/24239"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/24240"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/24272"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/26746"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://security.gentoo.org/glsa/glsa-200703-01.xml"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/196240"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.osvdb.org/32094"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/461810/100/0/threaded"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/22616"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securitytracker.com/id?1017669"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securitytracker.com/id?1017670"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.snort.org/docs/advisory-2007-02-19.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "http://www.us-cert.gov/cas/techalerts/TA07-050A.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2007/0656"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2007/0668"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www116.nortelnetworks.com/pub/repository/CLARIFY/DOCUMENT/2007/08/021923-01.pdf"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL\u0026DocumentOID=540173"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=229265"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31275"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://www.exploit-db.com/exploits/3362"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://fedoranews.org/updates/FEDORA-2007-206.shtml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://iss.net/threats/257.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/24190"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/24235"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/24239"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/24240"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/24272"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/26746"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://security.gentoo.org/glsa/glsa-200703-01.xml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/196240"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.osvdb.org/32094"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/461810/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/22616"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id?1017669"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id?1017670"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.snort.org/docs/advisory-2007-02-19.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "http://www.us-cert.gov/cas/techalerts/TA07-050A.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2007/0656"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2007/0668"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www116.nortelnetworks.com/pub/repository/CLARIFY/DOCUMENT/2007/08/021923-01.pdf"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL\u0026DocumentOID=540173"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=229265"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31275"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.exploit-db.com/exploits/3362"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-2PHQ-JG7H-GHF4

Vulnerability from github – Published: 2022-05-01 07:26 – Updated: 2022-05-01 07:26

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2006-5276"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2007-02-20T01:28:00Z",
    "severity": "HIGH"
  },
  "details": "Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic.",
  "id": "GHSA-2phq-jg7h-ghf4",
  "modified": "2022-05-01T07:26:42Z",
  "published": "2022-05-01T07:26:42Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-5276"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=229265"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31275"
    },
    {
      "type": "WEB",
      "url": "https://www.exploit-db.com/exploits/3362"
    },
    {
      "type": "WEB",
      "url": "http://fedoranews.org/updates/FEDORA-2007-206.shtml"
    },
    {
      "type": "WEB",
      "url": "http://iss.net/threats/257.html"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24190"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24235"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24239"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24240"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24272"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/26746"
    },
    {
      "type": "WEB",
      "url": "http://security.gentoo.org/glsa/glsa-200703-01.xml"
    },
    {
      "type": "WEB",
      "url": "http://www.kb.cert.org/vuls/id/196240"
    },
    {
      "type": "WEB",
      "url": "http://www.osvdb.org/32094"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/461810/100/0/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/22616"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id?1017669"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id?1017670"
    },
    {
      "type": "WEB",
      "url": "http://www.snort.org/docs/advisory-2007-02-19.html"
    },
    {
      "type": "WEB",
      "url": "http://www.us-cert.gov/cas/techalerts/TA07-050A.html"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2007/0656"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2007/0668"
    },
    {
      "type": "WEB",
      "url": "http://www116.nortelnetworks.com/pub/repository/CLARIFY/DOCUMENT/2007/08/021923-01.pdf"
    },
    {
      "type": "WEB",
      "url": "http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL\u0026DocumentOID=540173"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2006-5276 (GCVE-0-2006-5276)

CERTA-2007-AVI-095

Description

Solution

CERTA-2007-AVI-095

Description

Solution

VAR-200702-0378

Resolution

References

Availability

Concerns?

License

GSD-2006-5276

FKIE_CVE-2006-5276

GHSA-2PHQ-JG7H-GHF4

Tags

Sightings

Nomenclature