Vulnerability Details CVE-2017-6658
Cisco Sourcefire Snort 3.0 before build 233 has a Buffer Overread related to use of a decoder array. The size was off by one making it possible to read past the end of the array with an ether type of 0xFFFF. Increasing the array size solves this problem.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.5%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- http://blog.snort.org/2017/05/snort-vulnerabilities-found.html
- http://www.securitytracker.com/id/1038483
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170515-snort
- http://blog.snort.org/2017/05/snort-vulnerabilities-found.html
- http://www.securitytracker.com/id/1038483
Products affected by CVE-2017-6658
-
cpe:2.3:a:cisco:sourcefire_snort:3.0