CVE-2006-5276

Snort < 2.6.1.2 - Buffer Overflow

Title source: rule

Description

Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic.

Exploits (5)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotemultiple
https://www.exploit-db.com/exploits/18723
exploitdb WORKING POC VERIFIED
by Winny Thomas · pythonremotelinux
https://www.exploit-db.com/exploits/3609
exploitdb WORKING POC VERIFIED
by Trirat Puttaraksa · pythonremotewindows
https://www.exploit-db.com/exploits/3391
exploitdb WORKING POC VERIFIED
by Trirat Puttaraksa · pythondosmultiple
https://www.exploit-db.com/exploits/3362
metasploit WORKING POC GOOD
by Neel Mehta, Trirat Puttaraksa · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/ids/snort_dce_rpc.rb

References (24)

... and 4 more

Scores

EPSS 0.8816
EPSS Percentile 99.5%

Details

Status published
Products (7)
snort/snort 2.6.1
snort/snort 2.6.1.1
snort/snort 2.7_beta1
snort/snort < 2.6.1.2
sourcefire/intrusion_sensor 4.1 (2 CPE variants)
sourcefire/intrusion_sensor 4.5 (2 CPE variants)
sourcefire/intrusion_sensor 4.6 (2 CPE variants)
Published Feb 20, 2007
Tracked Since Feb 18, 2026