CVE-2003-0033

2004-09-0104:00:00

mitre

web.nvd.nist.gov

cve-2003-0033

buffer overflow

snort

rpc

remote code execution

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.392

Percentile

97.3%

JSON

Buffer overflow in the RPC preprocessor for Snort 1.8 and 1.9.x before 1.9.1 allows remote attackers to execute arbitrary code via fragmented RPC packets.

Affected configurations

Nvd

Node

snortsnortMatch1.8.0

snortsnortMatch1.8.1

snortsnortMatch1.8.2

snortsnortMatch1.8.3

snortsnortMatch1.8.4

snortsnortMatch1.8.5

snortsnortMatch1.8.6

snortsnortMatch1.8.7

snortsnortMatch1.9.0

VendorProductVersionCPE
snortsnort1.8.0cpe:2.3:a:snort:snort:1.8.0:*:*:*:*:*:*:*
snortsnort1.8.1cpe:2.3:a:snort:snort:1.8.1:*:*:*:*:*:*:*
snortsnort1.8.2cpe:2.3:a:snort:snort:1.8.2:*:*:*:*:*:*:*
snortsnort1.8.3cpe:2.3:a:snort:snort:1.8.3:*:*:*:*:*:*:*
snortsnort1.8.4cpe:2.3:a:snort:snort:1.8.4:*:*:*:*:*:*:*
snortsnort1.8.5cpe:2.3:a:snort:snort:1.8.5:*:*:*:*:*:*:*
snortsnort1.8.6cpe:2.3:a:snort:snort:1.8.6:*:*:*:*:*:*:*
snortsnort1.8.7cpe:2.3:a:snort:snort:1.8.7:*:*:*:*:*:*:*
snortsnort1.9.0cpe:2.3:a:snort:snort:1.9.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
snort	snort	1.8.0	cpe:2.3:a:snort:snort:1.8.0:::::::*
snort	snort	1.8.1	cpe:2.3:a:snort:snort:1.8.1:::::::*
snort	snort	1.8.2	cpe:2.3:a:snort:snort:1.8.2:::::::*
snort	snort	1.8.3	cpe:2.3:a:snort:snort:1.8.3:::::::*
snort	snort	1.8.4	cpe:2.3:a:snort:snort:1.8.4:::::::*
snort	snort	1.8.5	cpe:2.3:a:snort:snort:1.8.5:::::::*
snort	snort	1.8.6	cpe:2.3:a:snort:snort:1.8.6:::::::*
snort	snort	1.8.7	cpe:2.3:a:snort:snort:1.8.7:::::::*
snort	snort	1.9.0	cpe:2.3:a:snort:snort:1.9.0:::::::*