Launchpad.net

CVE 2005-3252

Stack-based buffer overflow in the Back Orifice (BO) preprocessor for Snort before 2.4.3 allows remote attackers to execute arbitrary code via a crafted UDP packet.

Related bugs and status

CVE-2005-3252 (Candidate) is related to these bugs:

Bug #152069: remote-exploit by default

		In	Importance	Status
152069	remote-exploit by default	snort (Ubuntu)	Undecided	Fix Released
152069	remote-exploit by default	snort (Ubuntu Dapper)	Undecided	Won't Fix
152069	remote-exploit by default	snort (Ubuntu Edgy)	Undecided	Won't Fix
152069	remote-exploit by default	snort (Ubuntu Feisty)	Undecided	Won't Fix

See the

CVE page on Mitre.org for more details.

References

ISS: 20051018 Snort Back Or...
CONFIRM: http://www.snort.org/d...
CERT: TA05-291A
CERT-VN: VU#175500
SECTRACK: 1015070
BID: 15131
SECUNIA: 17559
SECUNIA: 17220
SECUNIA: 17255
FULLDISC: 20051025 Snort's BO pr...
FULLDISC: 20051101 Snort Back Or...
OSVDB: 20034
SUSE: SUSE-SR:2005:026
VUPEN: ADV-2005-2138
CONFIRM: http://www130.nortelne...
CONFIRM: http://www130.nortelne...