CVE-2006-6931

high

Description

Algorithmic complexity vulnerability in Snort before 2.6.1, during predicate evaluation in rule matching for certain rules, allows remote attackers to cause a denial of service (CPU consumption and detection outage) via crafted network traffic, aka a "backtracking attack."

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/31430

http://www.snort.org/pub-bin/snortnews.cgi

http://www.securityfocus.com/bid/21991

http://www.osvdb.org/32096

http://www.mandriva.com/security/advisories?name=MDKSA-2007:051

http://www.cs.wisc.edu/~smithr/pubs/randy_smith_acsac2006.zip

http://www.cs.wisc.edu/~smithr/pubs/acsac2006.pdf

http://www.acsac.org/2006/papers/54.pdf

http://www.acsac.org/2006/advance_program.html

http://www.acsac.org/2006/abstracts/54.html

http://securitytracker.com/id?1017508

http://security.gentoo.org/glsa/glsa-200702-03.xml

http://secunia.com/advisories/24338

http://secunia.com/advisories/24164

http://secunia.com/advisories/23716

http://lists.immunitysec.com/pipermail/dailydave/2007-January/003954.html

Details

Source: Mitre, NVD

Published: 2007-01-16

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: High