Vulnerability Details CVE-2002-0115
Snort 1.8.3 does not properly define the minimum ICMP header size, which allows remote attackers to cause a denial of service (crash and core dump) via a malformed ICMP packet.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.057
EPSS Ranking 89.9%
CVSS Severity
CVSS v2 Score 5.0
References
- http://online.securityfocus.com/archive/1/249340
- http://online.securityfocus.com/cgi-bin/archive.pl?id=1&start=2002-03-08&end=2002-03-14&mid=249623&threads=1
- http://www.iss.net/security_center/static/7874.php
- http://www.osvdb.org/2022
- http://www.securityfocus.com/bid/3849
- http://online.securityfocus.com/archive/1/249340
- http://online.securityfocus.com/cgi-bin/archive.pl?id=1&start=2002-03-08&end=2002-03-14&mid=249623&threads=1
- http://www.iss.net/security_center/static/7874.php
- http://www.osvdb.org/2022
- http://www.securityfocus.com/bid/3849
Products affected by CVE-2002-0115
-
cpe:2.3:a:martin_roesch:snort:1.8.3