[Snort-devel] Snort 2.20 Denial of Service exploit posted
markmormartin at ...436...
Sat Dec 25 17:18:14 EST 2004
Does any one have have more info on this DOS, the only reference I could
find for it was on the SANS site ?
Snort 2.20 Denial of Service exploit posted
K-OTik notified us of this exploit for Snort 2.2 and
It will core dump a running Snort process with a specially crafted
packed. The recommended fix is to upgrade to Snort 2.3 RC1 or better
which various handlers have reported is stable. This particular exploit
works with Linux-based distributions, but not BSD-based. (We tried
RHEL3, Debian, and OpenBSD
More information about the Snort-devel