[Snort-users] BO preproc exploit published

Matthew Watchinski mwatchinski at ...1935...
Wed Oct 26 07:52:28 EDT 2005

Just an FYI in snort 2.4.3 we added detection to the BO preprocessor to 
detect attempts to exploit this vulnerability (gid:sid) 105:4

105 || 4 || spp_bo: Back Orifice Snort Buffer Attack

Matthew Watchinski
Director, Vulnerability Research
Sourcefire, Inc.

Paul Melson wrote:

>In case you haven't already seen it.
>This SF.Net email is sponsored by the JBoss Inc.
>Get Certified Today * Register for a JBoss Training Course
>Free Certification Exam for All Training Attendees Through End of 2005
>Visit http://www.jboss.com/services/certification for more information
>Snort-users mailing list
>Snort-users at lists.sourceforge.net
>Go to this URL to change user options or unsubscribe:
>Snort-users list archive:

More information about the Snort-users mailing list