Candidate: CVE-2016-1417
PublicDate: 2017-01-23 21:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1417
 http://hyp3rlinx.altervista.org/advisories/SNORT-DLL-HIJACK.txt
 http://packetstormsecurity.com/files/138915/Snort-2.9.7.0-WIN32-DLL-Hijacking.html
 http://www.securitytracker.com/id/1036936
Description:
 Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote
 attackers to execute arbitrary code and conduct DLL hijacking attacks via a
 Trojan horse tcapi.dll that is located in the same folder on a remote file
 share as a pcap file that is being processed.
Ubuntu-Description:
Notes:
 tyhicks> Windows only
Bugs:
Priority: high
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H [8.8 HIGH]

Patches_snort:
upstream_snort: not-affected (Windows only)
precise_snort: not-affected (Windows only)
trusty_snort: not-affected (Windows only)
trusty/esm_snort: not-affected (Windows only)
vivid/stable-phone-overlay_snort: DNE
vivid/ubuntu-core_snort: DNE
xenial_snort: not-affected (Windows only)
yakkety_snort: not-affected (Windows only)
devel_snort: not-affected (Windows only)