CVE-2008-1804
Published: 22 May 2008
preprocessors/spp_frag3.c in Sourcefire Snort before 2.8.1 does not properly identify packet fragments that have dissimilar TTL values, which allows remote attackers to bypass detection rules by using a different TTL for each fragment.
Priority
Status
Package | Release | Status |
---|---|---|
snort Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life)
|
feisty |
Ignored
(end of life, was needed)
|
|
gutsy |
Ignored
(end of life, was needed)
|
|
hardy |
Ignored
(end of life)
|
|
intrepid |
Ignored
(end of life, was needed)
|
|
jaunty |
Not vulnerable
(2.7.0-22ubuntu1)
|
|
karmic |
Not vulnerable
(2.8.4.1-3ubuntu1)
|
|
lucid |
Not vulnerable
(2.8.5.2-2)
|
|
maverick |
Not vulnerable
(2.8.5.2-2)
|
|
natty |
Not vulnerable
(2.8.5.2-2)
|
|
oneiric |
Not vulnerable
(2.8.5.2-2)
|
|
upstream |
Released
(2.7.0-20)
|