Vulnerability Details : CVE-2007-1398

The frag3 preprocessor in Snort 2.6.1.1, 2.6.1.2, and 2.7.0 beta, when configured for inline use on Linux without the ip_conntrack module loaded, allows remote attackers to cause a denial of service (segmentation fault and application crash) via certain UDP packets produced by send_morefrag_packet and send_overlap_packet.

Vulnerability category: Memory CorruptionDenial of service

Published 2007-03-10 22:19:00

Updated 2017-10-11 01:31:51

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2007-1398

Probability of exploitation activity in the next 30 days: 5.59%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 92 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2007-1398

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
7.1	HIGH	AV:N/AC:M/Au:N/C:N/I:N/A:C	8.6	6.9	[email protected]
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Complete

References for CVE-2007-1398

Products affected by CVE-2007-1398

Snort » Snort » Version: 2.6.1.1
cpe:2.3:a:snort:snort:2.6.1.1:*:*:*:*:*:*:*
Matching versions
When used together with: Linux » Linux Kernel » Ia32 64-bit Edition
Snort » Snort » Version: 2.7 Beta1
cpe:2.3:a:snort:snort:2.7_beta1:*:*:*:*:*:*:*
Matching versions
When used together with: Linux » Linux Kernel » Ia32 64-bit Edition
Snort » Snort » Version: 2.6.1.2
cpe:2.3:a:snort:snort:2.6.1.2:*:*:*:*:*:*:*
Matching versions
When used together with: Linux » Linux Kernel » Ia32 64-bit Edition