CVE-2003-0209

Published: May 5, 2003Modified: Apr 16, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and earlier allows remote attackers to execute arbitrary code via large sequence numbers in packets, which enable a heap-based buffer overflow.

Affected (11)

Products: Smoothwall: Smoothwall · Sourcefire: Snort

1 product

1 product

Configuration A

11 vulnerable

Vulnerable Software	Affected Versions
Smoothwall Smoothwall	Version 2.0_beta_4
Sourcefire Snort	Version 1.8.1
Sourcefire Snort	Version 1.8.2
Sourcefire Snort	Version 1.8.3
Sourcefire Snort	Version 1.8.4
Sourcefire Snort	Version 1.8.5
Sourcefire Snort	Version 1.8.6
Sourcefire Snort	Version 1.8.7
Sourcefire Snort	Version 1.8
Sourcefire Snort	Version 1.9.1
Sourcefire Snort	Version 1.9

References (22)

http://marc.info/?l=bugtraq&m=105043563016235&w=2

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=105103586927007&w=2

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=105111217731583&w=2

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=105154530427824&w=2

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=105172790914107&w=2

Source: cve@mitre.org

http://www.cert.org/advisories/CA-2003-13.html

Source: cve@mitre.org

US Government Resource

http://www.coresecurity.com/common/showdoc.php?idx=313&idxseccion=10

Source: cve@mitre.org

http://www.debian.org/security/2003/dsa-297

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/139129

Source: cve@mitre.org

Third Party AdvisoryUS Government Resource

http://www.mandriva.com/security/advisories?name=MDKSA-2003:052

Source: cve@mitre.org

http://www.securityfocus.com/bid/7178

Source: cve@mitre.org

ExploitPatchVendor Advisory

http://marc.info/?l=bugtraq&m=105043563016235&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=105103586927007&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=105111217731583&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=105154530427824&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=105172790914107&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.cert.org/advisories/CA-2003-13.html

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.coresecurity.com/common/showdoc.php?idx=313&idxseccion=10

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2003/dsa-297

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.kb.cert.org/vuls/id/139129

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

http://www.mandriva.com/security/advisories?name=MDKSA-2003:052

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/7178

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchVendor Advisory

Timeline

No history available yet.