CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
Percentile
96.1%
Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote
attackers to execute arbitrary code and conduct DLL hijacking attacks via a
Trojan horse tcapi.dll that is located in the same folder on a remote file
share as a pcap file that is being processed.
Author | Note |
---|---|
tyhicks | Windows only |
hyp3rlinx.altervista.org/advisories/SNORT-DLL-HIJACK.txt
packetstormsecurity.com/files/138915/Snort-2.9.7.0-WIN32-DLL-Hijacking.html
www.securitytracker.com/id/1036936
launchpad.net/bugs/cve/CVE-2016-1417
nvd.nist.gov/vuln/detail/CVE-2016-1417
security-tracker.debian.org/tracker/CVE-2016-1417
www.cve.org/CVERecord?id=CVE-2016-1417
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
Percentile
96.1%