CVE - CVE-2006-5276

CVE-ID
CVE-2006-5276	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:22616 URL:http://www.securityfocus.com/bid/22616 BUGTRAQ:20070303 ERRATA: [ GLSA 200703-01 ] Snort: Remote execution of arbitrary code URL:http://www.securityfocus.com/archive/1/461810/100/0/threaded CERT:TA07-050A URL:http://www.us-cert.gov/cas/techalerts/TA07-050A.html CERT-VN:VU#196240 URL:http://www.kb.cert.org/vuls/id/196240 CONFIRM:http://www.snort.org/docs/advisory-2007-02-19.html CONFIRM:http://www116.nortelnetworks.com/pub/repository/CLARIFY/DOCUMENT/2007/08/021923-01.pdf CONFIRM:http://www130.nortelnetworks.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=540173 EXPLOIT-DB:3362 URL:https://www.exploit-db.com/exploits/3362 FEDORA:FEDORA-2007-2060 URL:http://fedoranews.org/updates/FEDORA-2007-206.shtml GENTOO:GLSA-200703-01 URL:http://security.gentoo.org/glsa/glsa-200703-01.xml ISS:20070219 Sourcefire Snort Remote Buffer Overflow URL:~~http://iss.net/threats/257.html~~ (Obsolete source - check if archived by the Wayback Machine) MISC:https://bugzilla.redhat.com/show_bug.cgi?id=229265 OSVDB:32094 URL:~~http://www.osvdb.org/32094~~ (Obsolete source) SECTRACK:1017669 URL:http://www.securitytracker.com/id?1017669 SECTRACK:1017670 URL:http://www.securitytracker.com/id?1017670 SECUNIA:24190 URL:http://secunia.com/advisories/24190 SECUNIA:24235 URL:http://secunia.com/advisories/24235 SECUNIA:24239 URL:http://secunia.com/advisories/24239 SECUNIA:24240 URL:http://secunia.com/advisories/24240 SECUNIA:24272 URL:http://secunia.com/advisories/24272 SECUNIA:26746 URL:http://secunia.com/advisories/26746 VUPEN:ADV-2007-0656 URL:~~http://www.vupen.com/english/advisories/2007/0656~~ (Obsolete source) VUPEN:ADV-2007-0668 URL:~~http://www.vupen.com/english/advisories/2007/0668~~ (Obsolete source) XF:smb-bo(31275) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/31275
Assigning CNA
MITRE Corporation
Date Record Created
20061013	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20061013)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)