Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2007:051: snort Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the snort package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2007:051 (snort).
Algorithmic complexity vulnerability in Snort before 2.6.1, during
predicate evaluation in rule matching for certain rules, allows remote
attackers to cause a denial of service (CPU consumption and detection
outage) via crafted network traffic, aka a backtracking attack.
Updated packages have been patched to address this issue.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2007:051
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.