CVE-2006-6931

Description

Algorithmic complexity vulnerability in Snort before 2.6.1, during predicate evaluation in rule matching for certain rules, allows remote attackers to cause a denial of service (CPU consumption and detection outage) via crafted network traffic, aka a "backtracking attack."

How to fix CVE-2006-6931

To remediate CVE-2006-6931, upgrade the affected package to a fixed version below.

• Debian/snort—upgrade to 2.7.0-1 or later

Is CVE-2006-6931 being exploited?

Low — EPSS is 4.7%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

• from 0, < 2.7.0-1

References (17)

• ADVISORYsecunia.com/advisories/23716
• ADVISORYsecunia.com/advisories/24164
• ADVISORYsecunia.com/advisories/24338
• ADVISORYsecurity.gentoo.org/glsa/glsa-200702-03.xml
• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2006-6931