CVE-2003-0209

Published May 5, 2003

Last updated 8 years ago

CVSS info 10.0

Overview

Description: Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and earlier allows remote attackers to execute arbitrary code via large sequence numbers in packets, which enable a heap-based buffer overflow.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:smoothwall:smoothwall:2.0_beta_4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AFACAD55-4A59-40C8-9665-A0EB0615AF7C"
          },
          {
            "criteria": "cpe:2.3:a:sourcefire:snort:1.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19112117-1F8B-477A-8F56-D5A3DA088909"
          },
          {
            "criteria": "cpe:2.3:a:sourcefire:snort:1.8.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D195A059-BA72-4636-8093-F6F30F4DC5C6"
          },
          {
            "criteria": "cpe:2.3:a:sourcefire:snort:1.8.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8DF0C881-920C-461D-B5C5-0521901AFA5F"
          },
          {
            "criteria": "cpe:2.3:a:sourcefire:snort:1.8.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "092083FB-4C92-4C61-9F9C-86D4EF4E4590"
          },
          {
            "criteria": "cpe:2.3:a:sourcefire:snort:1.8.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F0343E1B-7157-4024-9B72-3C74441D5FDD"
          },
          {
            "criteria": "cpe:2.3:a:sourcefire:snort:1.8.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3CAB5AE0-7D15-46EB-8790-7FAEFBF8374E"
          },
          {
            "criteria": "cpe:2.3:a:sourcefire:snort:1.8.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AF224355-257D-419F-9C21-077CDE718AFF"
          },
          {
            "criteria": "cpe:2.3:a:sourcefire:snort:1.8.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "35775A5D-BB95-4ACF-B44A-A8C0C966EE0A"
          },
          {
            "criteria": "cpe:2.3:a:sourcefire:snort:1.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "15001BBA-CF05-49C4-87EA-615BC25B1D9C"
          },
          {
            "criteria": "cpe:2.3:a:sourcefire:snort:1.9.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "23824FEE-6160-4F4F-8531-80B8894E9F7F"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References