Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sourcefire vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2006-5276
Stack-based buffer overflow in the DCE/RPC preprocessor in Snort prior to 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote malicious users to execute arbitrary code via crafted SMB traffic.
Snort Snort 2.6.1
Sourcefire Intrusion Sensor 4.6
Sourcefire Intrusion Sensor 4.5
Sourcefire Intrusion Sensor 4.1
Snort Snort
Snort Snort 2.6.1.1
Snort Snort 2.7 Beta1
4 EDB exploits
10
CVSSv2
CVE-2003-0209
Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and previous versions allows remote malicious users to execute arbitrary code via large sequence numbers in packets, which enable a heap-based buffer overflow.
Sourcefire Snort 1.8.6
Sourcefire Snort 1.9.1
Sourcefire Snort 1.8.5
Sourcefire Snort 1.9
Sourcefire Snort 1.8.3
Sourcefire Snort 1.8.2
Sourcefire Snort 1.8
Sourcefire Snort 1.8.4
Sourcefire Snort 1.8.7
Sourcefire Snort 1.8.1
Smoothwall Smoothwall 2.0 Beta 4
1 EDB exploit
9
CVSSv2
CVE-2009-2344
The web-based management interfaces in Sourcefire Defense Center (DC) and 3D Sensor prior to 4.8.2 allow remote authenticated users to gain privileges via a $admin value for the admin parameter in an edit action to admin/user/user.cgi and unspecified other components.
Sourcefire Defense Center 4.8.0.3
Sourcefire 3d Sensor
Sourcefire Defense Center 4.8.0.4
Sourcefire Defense Center 4.8
Sourcefire 3d Sensor 4.8.0.4
Sourcefire 3d Sensor 4.8
Sourcefire 3d Sensor 4.8.0.3
Sourcefire Defense Center
1 EDB exploit
7.8
CVSSv2
CVE-2018-0233
A vulnerability in the Secure Sockets Layer (SSL) packet reassembly functionality of the detection engine in Cisco Firepower System Software could allow an unauthenticated, remote malicious user to cause the detection engine to consume excessive system memory on an affected devic...
Cisco Firepower Management Center 6.0.0
Cisco Firepower Management Center 6.2.1
Cisco Firepower Management Center 6.1.0
Cisco Firepower Management Center 5.4.0
Cisco Firepower Management Center 6.2.0
7.8
CVSSv2
CVE-2004-2652
The DecodeTCPOptions function in decode.c in Snort prior to 2.3.0, when printing TCP/IP options using FAST output or verbose mode, allows remote malicious users to cause a denial of service (crash) via packets with invalid TCP/IP options, which trigger a null dereference.
Sourcefire Snort 2.2
Sourcefire Snort 2.1.1 Rc1
Sourcefire Snort 2.1.0
Sourcefire Snort 2.1.3
2 EDB exploits
7.5
CVSSv2
CVE-2005-3252
Stack-based buffer overflow in the Back Orifice (BO) preprocessor for Snort prior to 2.4.3 allows remote malicious users to execute arbitrary code via a crafted UDP packet.
Sourcefire Snort 2.4.0
Sourcefire Snort 2.4.2
Sourcefire Snort 2.4.1
5 EDB exploits
7.2
CVSSv2
CVE-2021-34755
Multiple vulnerabilities in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local malicious user to execute arbitrary commands with root privileges. For more information about these vulnerabilities, see the Details section of this advisory.
Cisco Firepower Management Center Virtual Appliance 6.1.0
Cisco Firepower Management Center Virtual Appliance 6.2.0
Cisco Firepower Management Center Virtual Appliance 6.2.3
Cisco Sourcefire Defense Center 6.4.0
Cisco Sourcefire Defense Center 6.5.0
Cisco Sourcefire Defense Center 6.6.0
Cisco Firepower Threat Defense
Cisco Firepower Management Center Virtual Appliance 6.3.0
Cisco Sourcefire Defense Center 6.1.0
Cisco Sourcefire Defense Center 6.2.0
Cisco Sourcefire Defense Center 6.2.3
Cisco Sourcefire Defense Center 6.3.0
Cisco Sourcefire Defense Center 7.1.0
Cisco Firepower Management Center Virtual Appliance 7.1.0
Cisco Sourcefire Defense Center 6.4.0.11
Cisco Sourcefire Defense Center 6.6.1
Cisco Sourcefire Defense Center 6.7.0
Cisco Sourcefire Defense Center 7.0.0
Cisco Firepower Management Center Virtual Appliance 6.4.0
Cisco Firepower Management Center Virtual Appliance 6.4.0.11
Cisco Firepower Management Center Virtual Appliance 6.5.0
Cisco Firepower Management Center Virtual Appliance 6.6.0
7.2
CVSSv2
CVE-2021-34756
Multiple vulnerabilities in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local malicious user to execute arbitrary commands with root privileges. For more information about these vulnerabilities, see the Details section of this advisory.
Cisco Firepower Management Center Virtual Appliance 6.1.0
Cisco Firepower Management Center Virtual Appliance 6.2.0
Cisco Firepower Management Center Virtual Appliance 6.2.3
Cisco Sourcefire Defense Center 6.4.0
Cisco Sourcefire Defense Center 6.5.0
Cisco Sourcefire Defense Center 6.6.0
Cisco Firepower Threat Defense
Cisco Firepower Management Center Virtual Appliance 6.3.0
Cisco Sourcefire Defense Center 6.1.0
Cisco Sourcefire Defense Center 6.2.0
Cisco Sourcefire Defense Center 6.2.3
Cisco Sourcefire Defense Center 6.3.0
Cisco Sourcefire Defense Center 7.1.0
Cisco Firepower Management Center Virtual Appliance 7.1.0
Cisco Sourcefire Defense Center 6.4.0.11
Cisco Sourcefire Defense Center 6.6.1
Cisco Sourcefire Defense Center 6.7.0
Cisco Sourcefire Defense Center 7.0.0
Cisco Firepower Management Center Virtual Appliance 6.4.0
Cisco Firepower Management Center Virtual Appliance 6.4.0.11
Cisco Firepower Management Center Virtual Appliance 6.5.0
Cisco Firepower Management Center Virtual Appliance 6.6.0
7.2
CVSSv2
CVE-2018-0453
A vulnerability in the Sourcefire tunnel control channel protocol in Cisco Firepower System Software running on Cisco Firepower Threat Defense (FTD) sensors could allow an authenticated, local malicious user to execute specific CLI commands with root privileges on the Cisco Firep...
Cisco Firepower Threat Defense 5.4.0
Cisco Firepower Threat Defense 6.0.0
Cisco Firepower Threat Defense 6.0.1
Cisco Firepower Threat Defense 6.2.0
Cisco Firepower Threat Defense 6.1.0
Cisco Firepower Threat Defense 6.2.2
Cisco Firepower Threat Defense 6.2.1
7.1
CVSSv2
CVE-2021-34781
A vulnerability in the processing of SSH connections for multi-instance deployments of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on the affected device. This vulnerability is du...
Cisco Sourcefire Defense Center 6.4.0
Cisco Sourcefire Defense Center 6.5.0
Cisco Sourcefire Defense Center 6.6.0
Cisco Firepower Threat Defense
Cisco Firepower Management Center Virtual Appliance 6.3.0
Cisco Sourcefire Defense Center 6.3.0
Cisco Sourcefire Defense Center 7.0.0
Cisco Firepower Management Center Virtual Appliance 6.4.0
Cisco Firepower Management Center Virtual Appliance 6.5.0
Cisco Firepower Management Center Virtual Appliance 6.6.0
Cisco Firepower Management Center Virtual Appliance 7.0.0
Cisco Sourcefire Defense Center 6.7.0.3
Cisco Sourcefire Defense Center 6.4.0.13
Cisco Sourcefire Defense Center 6.7.1
Cisco Firepower Management Center Virtual Appliance 6.7.0.3
Cisco Firepower Management Center Virtual Appliance 6.4.0.13
Cisco Firepower Management Center Virtual Appliance 6.7.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »