Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.8
CVSSv2

CVE-2008-1804

Published: 22/05/2008 Updated: 08/08/2017
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Snort

Vulnerability Summary

preprocessors/spp_frag3.c in Sourcefire Snort prior to 2.8.1 does not properly identify packet fragments that have dissimilar TTL values, which allows remote malicious users to bypass detection rules by using a different TTL for each fragment.

Vulnerable Product Search on Vulmon Subscribe to Product

snort snort

Vendor Advisories

Debian CVElist Bug Report Logs: CVE-2008-1804: possibility to bypass detection rules
Debian Bug report logs - #483160 CVE-2008-1804: possibility to bypass detection rules Package: snort; Maintainer for snort is Javier Fernández-Sanguino Peña <jfs@debianorg>; Source for snort is src:snort (PTS, buildd, popcon) Reported by: Steffen Joeris <steffenjoeris@skolelinuxde> Date: Tue, 27 May 2008 15:12:1 ...

References

NVD-CWE-Otherhttp://labs.idefense.com/intelligence/vulnerabilities/display.php?id=701http://cvs.snort.org/viewcvs.cgi/snort/ChangeLog?rev=1.534.2.11http://cvs.snort.org/viewcvs.cgi/snort/src/preprocessors/spp_frag3.c.diff?r1=text&tr1=1.46.2.4&r2=text&tr2=1.46.2.5&diff_format=hhttp://www.securityfocus.com/bid/29327http://securitytracker.com/id?1020081http://secunia.com/advisories/30348http://www.ipcop.org/index.php?name=News&file=article&sid=40http://secunia.com/advisories/31204https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00198.htmlhttps://www.redhat.com/archives/fedora-package-announce/2008-June/msg00167.htmlhttps://www.redhat.com/archives/fedora-package-announce/2008-June/msg00156.htmlhttp://secunia.com/advisories/30563http://www.vupen.com/english/advisories/2008/1602https://exchange.xforce.ibmcloud.com/vulnerabilities/42584https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=483160https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693CVE-2024-30851CVE-2024-34460CVE-2024-2887localCVE-2024-27956remote code executionCVE-2024-34475privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook