CVE-2006-2769
Published: 2 June 2006
The HTTP Inspect preprocessor (http_inspect) in Snort 2.4.0 through 2.4.4 allows remote attackers to bypass "uricontent" rules via a carriage return (\r) after the URL and before the HTTP declaration.
Priority
Status
Package | Release | Status |
---|---|---|
snort Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life)
|
edgy |
Ignored
(end of life, was needed)
|
|
feisty |
Released
(2.3.3-9)
|
|
gutsy |
Released
(2.3.3-9)
|
|
hardy |
Released
(2.3.3-9)
|
|
intrepid |
Released
(2.3.3-9)
|
|
jaunty |
Released
(2.3.3-9)
|
|
karmic |
Released
(2.3.3-9)
|
|
upstream |
Needs triage
|