CVE-2003-0209 - Vulnerability Details - OpenCVE

Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and earlier allows remote attackers to execute arbitrary code via large sequence numbers in packets, which enable a heap-based buffer overflow.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Smoothwall	Smoothwall
Sourcefire	Snort

Configuration 1 [-]

OR	cpe:2.3:a:smoothwall:smoothwall:2.0_beta_4:::::::*
	cpe:2.3:a:sourcefire:snort:1.8:::::::*
	cpe:2.3:a:sourcefire:snort:1.8.1:::::::*
	cpe:2.3:a:sourcefire:snort:1.8.2:::::::*
	cpe:2.3:a:sourcefire:snort:1.8.3:::::::*
	cpe:2.3:a:sourcefire:snort:1.8.4:::::::*
	cpe:2.3:a:sourcefire:snort:1.8.5:::::::*
	cpe:2.3:a:sourcefire:snort:1.8.6:::::::*
	cpe:2.3:a:sourcefire:snort:1.8.7:::::::*
	cpe:2.3:a:sourcefire:snort:1.9:::::::*
	cpe:2.3:a:sourcefire:snort:1.9.1:::::::*

No data.

References

Link	Providers
http://marc.info/?l=bugtraq&m=105043563016235&w=2
http://marc.info/?l=bugtraq&m=105103586927007&w=2
http://marc.info/?l=bugtraq&m=105111217731583&w=2
http://marc.info/?l=bugtraq&m=105154530427824&w=2
http://marc.info/?l=bugtraq&m=105172790914107&w=2
http://www.cert.org/advisories/CA-2003-13.html
http://www.coresecurity.com/common/showdoc.php?idx=313&idxseccion=10
http://www.debian.org/security/2003/dsa-297
http://www.kb.cert.org/vuls/id/139129
http://www.mandriva.com/security/advisories?name=MDKSA-2003:052
http://www.securityfocus.com/bid/7178

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2003-04-16T04:00:00

Updated: 2024-08-08T01:43:36.113Z

Reserved: 2003-04-15T00:00:00

Link: CVE-2003-0209

Vulnrichment

No data.

NVD

Status : Modified

Published: 2003-05-05T04:00:00.000

Modified: 2024-11-20T23:44:13.173

Link: CVE-2003-0209

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2003-04-15T00:00:00", "descriptions": [{"lang": "en", "value": "Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and earlier allows remote attackers to execute arbitrary code via large sequence numbers in packets, which enable a heap-based buffer overflow."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-10-17T13:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20030422 GLSA: snort (200304-05)", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=105103586927007&w=2"}, {"name": "7178", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/7178"}, {"name": "CA-2003-13", "tags": ["third-party-advisory", "x_refsource_CERT"], "url": "http://www.cert.org/advisories/CA-2003-13.html"}, {"name": "20030415 CORE-2003-0307: Snort TCP Stream Reassembly Integer Overflow Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=105043563016235&w=2"}, {"name": "ESA-20030430-013", "tags": ["vendor-advisory", "x_refsource_ENGARDE"], "url": "http://marc.info/?l=bugtraq&m=105172790914107&w=2"}, {"name": "VU#139129", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/139129"}, {"name": "DSA-297", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2003/dsa-297"}, {"name": "20030423 Snort <=1.9.1 exploit", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=105111217731583&w=2"}, {"name": "MDKSA-2003:052", "tags": ["vendor-advisory", "x_refsource_MANDRAKE"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:052"}, {"tags": ["x_refsource_MISC"], "url": "http://www.coresecurity.com/common/showdoc.php?idx=313&idxseccion=10"}, {"name": "20030428 GLSA: snort (200304-06)", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=105154530427824&w=2"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2003-0209", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and earlier allows remote attackers to execute arbitrary code via large sequence numbers in packets, which enable a heap-based buffer overflow."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20030422 GLSA: snort (200304-05)", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=105103586927007&w=2"}, {"name": "7178", "refsource": "BID", "url": "http://www.securityfocus.com/bid/7178"}, {"name": "CA-2003-13", "refsource": "CERT", "url": "http://www.cert.org/advisories/CA-2003-13.html"}, {"name": "20030415 CORE-2003-0307: Snort TCP Stream Reassembly Integer Overflow Vulnerability", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=105043563016235&w=2"}, {"name": "ESA-20030430-013", "refsource": "ENGARDE", "url": "http://marc.info/?l=bugtraq&m=105172790914107&w=2"}, {"name": "VU#139129", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/139129"}, {"name": "DSA-297", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2003/dsa-297"}, {"name": "20030423 Snort <=1.9.1 exploit", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=105111217731583&w=2"}, {"name": "MDKSA-2003:052", "refsource": "MANDRAKE", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:052"}, {"name": "http://www.coresecurity.com/common/showdoc.php?idx=313&idxseccion=10", "refsource": "MISC", "url": "http://www.coresecurity.com/common/showdoc.php?idx=313&idxseccion=10"}, {"name": "20030428 GLSA: snort (200304-06)", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=105154530427824&w=2"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T01:43:36.113Z"}, "title": "CVE Program Container", "references": [{"name": "20030422 GLSA: snort (200304-05)", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=105103586927007&w=2"}, {"name": "7178", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/7178"}, {"name": "CA-2003-13", "tags": ["third-party-advisory", "x_refsource_CERT", "x_transferred"], "url": "http://www.cert.org/advisories/CA-2003-13.html"}, {"name": "20030415 CORE-2003-0307: Snort TCP Stream Reassembly Integer Overflow Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=105043563016235&w=2"}, {"name": "ESA-20030430-013", "tags": ["vendor-advisory", "x_refsource_ENGARDE", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=105172790914107&w=2"}, {"name": "VU#139129", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/139129"}, {"name": "DSA-297", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2003/dsa-297"}, {"name": "20030423 Snort <=1.9.1 exploit", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=105111217731583&w=2"}, {"name": "MDKSA-2003:052", "tags": ["vendor-advisory", "x_refsource_MANDRAKE", "x_transferred"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:052"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.coresecurity.com/common/showdoc.php?idx=313&idxseccion=10"}, {"name": "20030428 GLSA: snort (200304-06)", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=105154530427824&w=2"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2003-0209", "datePublished": "2003-04-16T04:00:00", "dateReserved": "2003-04-15T00:00:00", "dateUpdated": "2024-08-08T01:43:36.113Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:smoothwall:smoothwall:2.0_beta_4:*:*:*:*:*:*:*", "matchCriteriaId": "AFACAD55-4A59-40C8-9665-A0EB0615AF7C", "vulnerable": true}, {"criteria": "cpe:2.3:a:sourcefire:snort:1.8:*:*:*:*:*:*:*", "matchCriteriaId": "19112117-1F8B-477A-8F56-D5A3DA088909", "vulnerable": true}, {"criteria": "cpe:2.3:a:sourcefire:snort:1.8.1:*:*:*:*:*:*:*", "matchCriteriaId": "D195A059-BA72-4636-8093-F6F30F4DC5C6", "vulnerable": true}, {"criteria": "cpe:2.3:a:sourcefire:snort:1.8.2:*:*:*:*:*:*:*", "matchCriteriaId": "8DF0C881-920C-461D-B5C5-0521901AFA5F", "vulnerable": true}, {"criteria": "cpe:2.3:a:sourcefire:snort:1.8.3:*:*:*:*:*:*:*", "matchCriteriaId": "092083FB-4C92-4C61-9F9C-86D4EF4E4590", "vulnerable": true}, {"criteria": "cpe:2.3:a:sourcefire:snort:1.8.4:*:*:*:*:*:*:*", "matchCriteriaId": "F0343E1B-7157-4024-9B72-3C74441D5FDD", "vulnerable": true}, {"criteria": "cpe:2.3:a:sourcefire:snort:1.8.5:*:*:*:*:*:*:*", "matchCriteriaId": "3CAB5AE0-7D15-46EB-8790-7FAEFBF8374E", "vulnerable": true}, {"criteria": "cpe:2.3:a:sourcefire:snort:1.8.6:*:*:*:*:*:*:*", "matchCriteriaId": "AF224355-257D-419F-9C21-077CDE718AFF", "vulnerable": true}, {"criteria": "cpe:2.3:a:sourcefire:snort:1.8.7:*:*:*:*:*:*:*", "matchCriteriaId": "35775A5D-BB95-4ACF-B44A-A8C0C966EE0A", "vulnerable": true}, {"criteria": "cpe:2.3:a:sourcefire:snort:1.9:*:*:*:*:*:*:*", "matchCriteriaId": "15001BBA-CF05-49C4-87EA-615BC25B1D9C", "vulnerable": true}, {"criteria": "cpe:2.3:a:sourcefire:snort:1.9.1:*:*:*:*:*:*:*", "matchCriteriaId": "23824FEE-6160-4F4F-8531-80B8894E9F7F", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and earlier allows remote attackers to execute arbitrary code via large sequence numbers in packets, which enable a heap-based buffer overflow."}, {"lang": "es", "value": "Desbordamiento de enteros en el modulo de reensamblaje TCP (stream4) de Snort 2.0 y anteriores permite a atacantes remotos ejecutar c\u00f3digo arbitrario mediante n\u00fameros de secuencia largo en paquetes, lo que permite un desbordamiento de b\u00fafer basado en el mont\u00f3n."}], "id": "CVE-2003-0209", "lastModified": "2024-11-20T23:44:13.173", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2003-05-05T04:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=105043563016235&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=105103586927007&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=105111217731583&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=105154530427824&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=105172790914107&w=2"}, {"source": "cve@mitre.org", "tags": ["US Government Resource"], "url": "http://www.cert.org/advisories/CA-2003-13.html"}, {"source": "cve@mitre.org", "url": "http://www.coresecurity.com/common/showdoc.php?idx=313&idxseccion=10"}, {"source": "cve@mitre.org", "url": "http://www.debian.org/security/2003/dsa-297"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/139129"}, {"source": "cve@mitre.org", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:052"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/7178"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=105043563016235&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=105103586927007&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=105111217731583&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=105154530427824&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=105172790914107&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["US Government Resource"], "url": "http://www.cert.org/advisories/CA-2003-13.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.coresecurity.com/common/showdoc.php?idx=313&idxseccion=10"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.debian.org/security/2003/dsa-297"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/139129"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:052"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/7178"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}