preprocessors/spp_frag3.c in Sourcefire Snort prior to 2.8.1 does not properly identify packet fragments that have dissimilar TTL values, which allows remote malicious users to bypass detection rules by using a different TTL for each fragment.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
snort snort |