Vulnerability Details : CVE-2006-6931
Algorithmic complexity vulnerability in Snort before 2.6.1, during predicate evaluation in rule matching for certain rules, allows remote attackers to cause a denial of service (CPU consumption and detection outage) via crafted network traffic, aka a "backtracking attack."
Vulnerability category: Denial of service
Products affected by CVE-2006-6931
- cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-6931
13.75%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 95 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2006-6931
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:N/A:P |
10.0
|
2.9
|
NIST |
References for CVE-2006-6931
-
http://www.mandriva.com/security/advisories?name=MDKSA-2007:051
Mandriva
-
http://www.cs.wisc.edu/~smithr/pubs/randy_smith_acsac2006.zip
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/31430
Snort rule matching denial of service CVE-2006-6931 Vulnerability Report
-
http://www.acsac.org/2006/abstracts/54.html
ACSAC (www.acsac.org): Backtracking Algorithmic Complexity Attacks Against a NIDS
-
http://securitytracker.com/id?1017508
Access Denied
-
http://www.snort.org/pub-bin/snortnews.cgi
Snort.Org 404
-
http://www.acsac.org/2006/papers/54.pdf
Vendor Advisory
-
http://www.securityfocus.com/bid/21991
-
http://www.cs.wisc.edu/~smithr/pubs/acsac2006.pdf
Vendor Advisory
-
http://security.gentoo.org/glsa/glsa-200702-03.xml
Snort: Denial of service (GLSA 200702-03) — Gentoo security
-
http://www.acsac.org/2006/advance_program.html
Advance Program for ACSAC 2006
-
http://lists.immunitysec.com/pipermail/dailydave/2007-January/003954.html
Jump to