Short Name |
APP:SNORT:GARBAGE-PACKET |
---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
Malformed Packet Exploit |
Release Date |
2003/05/14 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability in Snort 1.9.1 and earlier versions. Attackers can exploit Snort RPC validation to generate a shell that runs with Snort user privileges (typically root), possibly creating a denial-of-service condition, or executing arbitrary code.
A vulnerability in the Snort network IDS has been discovered that may allow for remote attackers to compromise hosts using the system. The vulnerability is due to a programmatic flaw in the RPC preprocessor. This preprocessor is enabled by default. Successful attacks may result in the execution of instructions on the IDS system with root privileges.