Vulnerabilities > CVE-2006-0839 - Unspecified vulnerability in Sourcefire Snort 2.4.3

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

sourcefire

NVD

Published: 2006-02-22

Updated: 2018-10-18

Summary

The frag3 preprocessor in Sourcefire Snort 2.4.3 does not properly reassemble certain fragmented packets with IP options, which allows remote attackers to evade detection of certain attacks, possibly related to IP option lengths.

Vulnerable Configurations

Part	Description	Count
Application	Sourcefire Sourcefire Snort 2.4.3	1

References

http://secunia.com/advisories/18959
http://www.securityfocus.com/archive/1/425290/100/0/threaded
http://www.securityfocus.com/bid/16705
https://exchange.xforce.ibmcloud.com/vulnerabilities/24811