Description
Snort 1.8.3 does not properly define the minimum ICMP header size, which allows remote attackers to cause a denial of service (crash and core dump) via a malformed ICMP packet.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Sinbad · textdosmultiple
https://www.exploit-db.com/exploits/21213
References (5)
Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/3849
Exploit mailing-list
x_refsource_bugtraq
http://online.securityfocus.com/archive/1/249340
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/2022
Patch mailing-list
x_refsource_bugtraq
http://online.securityfocus.com/cgi-bin/archive.pl?id=1&start=2002-03-08&end=2002-03-14&mid=249623&threads=1
Patch, Vendor Advisory vdb-entry
x_refsource_xf
http://www.iss.net/security_center/static/7874.php
Scores
EPSS
0.0866
EPSS Percentile
92.5%
Details
Status
published
Products (1)
martin_roesch/snort
1.8.3
Published
Mar 25, 2002
Tracked Since
Feb 18, 2026