Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2003-0209
HistoryMay 05, 2003 - 4:00 a.m.

CVE-2003-0209

2003-05-0504:00:00
mitre
web.nvd.nist.gov
38
cve-2003-0209
integer overflow
tcp
stream reassembly
remote code execution
snort 2.0

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.143

Percentile

95.8%

JSON

Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and earlier allows remote attackers to execute arbitrary code via large sequence numbers in packets, which enable a heap-based buffer overflow.

Affected configurations

Nvd
Node
smoothwallsmoothwallMatch2.0_beta_4
OR
sourcefiresnortMatch1.8
OR
sourcefiresnortMatch1.8.1
OR
sourcefiresnortMatch1.8.2
OR
sourcefiresnortMatch1.8.3
OR
sourcefiresnortMatch1.8.4
OR
sourcefiresnortMatch1.8.5
OR
sourcefiresnortMatch1.8.6
OR
sourcefiresnortMatch1.8.7
OR
sourcefiresnortMatch1.9
OR
sourcefiresnortMatch1.9.1
VendorProductVersionCPE
smoothwallsmoothwall2.0_beta_4cpe:2.3:a:smoothwall:smoothwall:2.0_beta_4:*:*:*:*:*:*:*
sourcefiresnort1.8cpe:2.3:a:sourcefire:snort:1.8:*:*:*:*:*:*:*
sourcefiresnort1.8.1cpe:2.3:a:sourcefire:snort:1.8.1:*:*:*:*:*:*:*
sourcefiresnort1.8.2cpe:2.3:a:sourcefire:snort:1.8.2:*:*:*:*:*:*:*
sourcefiresnort1.8.3cpe:2.3:a:sourcefire:snort:1.8.3:*:*:*:*:*:*:*
sourcefiresnort1.8.4cpe:2.3:a:sourcefire:snort:1.8.4:*:*:*:*:*:*:*
sourcefiresnort1.8.5cpe:2.3:a:sourcefire:snort:1.8.5:*:*:*:*:*:*:*
sourcefiresnort1.8.6cpe:2.3:a:sourcefire:snort:1.8.6:*:*:*:*:*:*:*
sourcefiresnort1.8.7cpe:2.3:a:sourcefire:snort:1.8.7:*:*:*:*:*:*:*
sourcefiresnort1.9cpe:2.3:a:sourcefire:snort:1.9:*:*:*:*:*:*:*
Rows per page:
1-10 of 111

Related

debiancve 1
exploitdb 1
cvelist 1
nessus 2
nvd 1
openvas 2
debian 2
cert 2
osv 1
debiancve
debiancve
CVE-2003-0209
2003-05-05 04:00:00
exploitdb
exploitdb
Snort 1.9.1 - 'p7snort191.sh' Remote Command Execution
2003-04-23 00:00:00
cvelist
cvelist
CVE-2003-0209
2003-04-16 04:00:00
nessus
nessus
Mandrake Linux Security Advisory : snort (MDKSA-2003:052)
2004-07-31 00:00:00
Debian DSA-297-1 : snort - integer overflow, buffer overflow
2004-09-29 00:00:00
nvd
nvd
CVE-2003-0209
2003-05-05 04:00:00
openvas
openvas
Debian Security Advisory DSA 297-1 (snort)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-297)
2008-01-17 00:00:00
debian
debian
[SECURITY] [DSA 297-1] New snort packages fix remote root exploits
2003-05-01 13:12:58
[SECURITY] [DSA 297-1] New snort packages fix remote root exploits
2003-05-01 13:12:58
cert
cert
Heap overflow in Snort "stream4" preprocessor
2003-04-16 00:00:00
Buffer overflow in Snort RPC preprocessor
2003-03-03 00:00:00
osv
osv
snort - integer overflow, buffer overflow
2003-05-01 00:00:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.143

Percentile

95.8%

JSON
Related for CVE-2003-0209
debiancve1exploitdb1cvelist1nessus2nvd1openvas2debian2cert2osv1