[Snort-users] BO preproc exploit published

Paul Melson pmelson at ...11827...
Wed Oct 26 08:24:23 EDT 2005

-----Original Message-----
Subject: Re: [Snort-users] BO preproc exploit published

> Just an FYI in snort 2.4.3 we added detection to the BO preprocessor to
detect attempts to 
> exploit this vulnerability (gid:sid) 105:4
> 105 || 4 || spp_bo: Back Orifice Snort Buffer Attack

I saw that in the release notes.  To date, my sensors have not detected any
attempts to exploit the bo preproc.  I suppose that now that there's
publicly available code that I ought to test it. ;)


More information about the Snort-users mailing list