Vulnerability Database

289,689

Total vulnerabilities in the database

CVE-2007-1398

The frag3 preprocessor in Snort 2.6.1.1, 2.6.1.2, and 2.7.0 beta, when configured for inline use on Linux without the ip_conntrack module loaded, allows remote attackers to cause a denial of service (segmentation fault and application crash) via certain UDP packets produced by send_morefrag_packet and send_overlap_packet.

  • Published: Mar 10, 2007
  • Updated: Apr 13, 2023
  • CVE: CVE-2007-1398
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.1
  • AV:N/AC:M/Au:N/C:N/I:N/A:C

No CWE or OWASP classifications available.

Software From Fixed in
snort / snort 2.6.1.1 2.6.1.1.x
snort / snort 2.6.1.2 2.6.1.2.x
snort / snort 2.7_beta1 2.7_beta1.x