Sourcefire: >> Snort >> 2.2 Security Vulnerabilities
The DecodeTCPOptions function in decode.c in Snort before 2.3.0, when printing TCP/IP options using FAST output or verbose mode, allows remote attackers to cause a denial of service (crash) via packets with invalid TCP/IP options, which trigger a null dereference.
CVSS Score
7.8
EPSS Score
0.227
Published
2004-12-31