CVE-2007-0251
Published Jan 16, 2007
Last updated 6 years ago
Overview
- Description
- Integer underflow in the DecodeGRE function in src/decode.c in Snort 2.6.1.2 allows remote attackers to trigger dereferencing of certain memory locations via crafted GRE packets, which may cause corruption of log files or writing of sensitive information into log files.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.8
- Impact score
- 6.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:C
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:snort:snort:2.6.1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CE956C2B-8647-497B-A4C1-05A526629B97"
}
],
"operator": "OR"
}
]
}
]