{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2009-10-22T00:00:00", "descriptions": [{"lang": "en", "value": "Snort before 2.8.5.1, when the -v option is enabled, allows remote attackers to cause a denial of service (application crash) via a crafted IPv6 packet that uses the (1) TCP or (2) ICMP protocol."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-16T14:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"name": "59159", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/59159"}, {"name": "36795", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/36795"}, {"name": "1023076", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1023076"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://dl.snort.org/snort-current/release_notes_2851.txt"}, {"name": "37135", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/37135"}, {"name": "[oss-security] 20091025 CVE Request -- Snort - 2.8.5.1", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://marc.info/?l=oss-security&m=125649553414700&w=2"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://vrt-sourcefire.blogspot.com/2009/10/snort-2851-release.html"}, {"name": "ADV-2009-3014", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2009/3014"}, {"name": "snort-ipv6-dos(53912)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53912"}, {"name": "[oss-security] 20091025 SANS: Security Thought LeadersRe: CVE Request -- Snort - 2.8.5.1", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2009/10/25/5"}, {"name": "20091022 Snort <= 2.8.5 IPV6 Remote DoS", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://seclists.org/fulldisclosure/2009/Oct/299"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=530863"}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T06:38:28.460Z"}, "title": "CVE Program Container", "references": [{"name": "59159", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/59159"}, {"name": "36795", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/36795"}, {"name": "1023076", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1023076"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://dl.snort.org/snort-current/release_notes_2851.txt"}, {"name": "37135", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/37135"}, {"name": "[oss-security] 20091025 CVE Request -- Snort - 2.8.5.1", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://marc.info/?l=oss-security&m=125649553414700&w=2"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://vrt-sourcefire.blogspot.com/2009/10/snort-2851-release.html"}, {"name": "ADV-2009-3014", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2009/3014"}, {"name": "snort-ipv6-dos(53912)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53912"}, {"name": "[oss-security] 20091025 SANS: Security Thought LeadersRe: CVE Request -- Snort - 2.8.5.1", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2009/10/25/5"}, {"name": "20091022 Snort <= 2.8.5 IPV6 Remote DoS", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://seclists.org/fulldisclosure/2009/Oct/299"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=530863"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2009-3641", "datePublished": "2009-10-28T14:00:00", "dateReserved": "2009-10-09T00:00:00", "dateUpdated": "2024-08-07T06:38:28.460Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*", "matchCriteriaId": "22D46C54-E778-4B2F-83ED-FE2F5BDB21A7", "versionEndIncluding": "2.8.3.5", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:1.6:*:*:*:*:*:*:*", "matchCriteriaId": "5EB5D24B-44B7-4BA1-B988-BBB3342F0C3A", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:1.8.0:*:*:*:*:*:*:*", "matchCriteriaId": "AB872377-FADD-4603-8B5E-B07FB623303F", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:1.8.1:*:*:*:*:*:*:*", "matchCriteriaId": "12D3E0FE-0557-4B8F-A97B-1FBE6030C8CA", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:1.8.2:*:*:*:*:*:*:*", "matchCriteriaId": "B1FB45D9-AD03-43F0-8349-48E22BEB4CCD", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:1.8.3:*:*:*:*:*:*:*", "matchCriteriaId": "42E91565-395C-49C3-9EFA-8C9102542FB6", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:1.8.4:*:*:*:*:*:*:*", "matchCriteriaId": "9F219B8B-4B47-41AB-838C-D0CAA9C1E700", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:1.8.5:*:*:*:*:*:*:*", "matchCriteriaId": "76ADDBD4-6870-4B3A-9113-FF74F91FA60F", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:1.8.6:*:*:*:*:*:*:*", "matchCriteriaId": "EE7F86C7-1A9D-4B7B-B928-4CCA836B898B", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:1.8.7:*:*:*:*:*:*:*", "matchCriteriaId": "117FE0B7-B508-4394-8CB3-9511D89DD011", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:1.9.0:*:*:*:*:*:*:*", "matchCriteriaId": "6F14606E-17DC-472F-AC73-C2EB809DA6A9", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:1.9.1:*:*:*:*:*:*:*", "matchCriteriaId": "C55576D9-78CE-4A7E-8671-E1D680823090", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:2.0:beta:*:*:*:*:*:*", "matchCriteriaId": "9B0FA051-0F54-4555-BEE3-902A0C6AE7BA", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:2.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "29313843-C4EB-4EF7-99C9-F8D79D8DF1CE", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:2.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "D28E9711-C9BB-4351-A6C3-0DDB26BC4ECC", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:2.6.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "1B8F630B-DD44-4095-B90D-2D18CD321580", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:2.6.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "CE956C2B-8647-497B-A4C1-05A526629B97", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:2.6.2:*:*:*:*:*:*:*", "matchCriteriaId": "634BE41F-E9DF-4C32-8604-F607745EBF8B", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:2.7_beta1:*:*:*:*:*:*:*", "matchCriteriaId": "9C41D0F1-BDB9-4F50-81CF-F5DF07770DDF", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:2.8.0:*:*:*:*:*:*:*", "matchCriteriaId": "4E1A93B0-6B57-4D7C-8CEB-A90435502A6D", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:2.8.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "D9F2D004-B87F-4EA4-A798-1991B5BD632E", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:2.8.3:*:*:*:*:*:*:*", "matchCriteriaId": "80841CC2-D80D-4961-A995-81D6B7684733", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:2.8.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "A17D59E1-7B1D-4401-AE39-949331320E8A", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:2.8.3.2:*:*:*:*:*:*:*", "matchCriteriaId": "B443015A-8E47-478C-8567-D56095D6B015", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:2.8.3.4:*:*:*:*:*:*:*", "matchCriteriaId": "394CC663-F87F-4100-ABDD-BA92B3AE7567", "vulnerable": true}, {"criteria": "cpe:2.3:a:snort:snort:2.8.3.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "B8309F3D-16B2-4061-B08A-E5A6F06E9623", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Snort before 2.8.5.1, when the -v option is enabled, allows remote attackers to cause a denial of service (application crash) via a crafted IPv6 packet that uses the (1) TCP or (2) ICMP protocol."}, {"lang": "es", "value": "Snort anterior v.2.8.5.1, cuando la opci\u00f3n -v es activada, permite a atacantes remotos causar una denegaci\u00f3n de servicio (ca\u00edda aplicaci\u00f3n) a trav\u00e9s de un paquete Ipv6 manipulado que usa el protocolo (1) TCP o (2)ICMP."}], "id": "CVE-2009-3641", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2009-10-28T14:30:00.250", "references": [{"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://dl.snort.org/snort-current/release_notes_2851.txt"}, {"source": "secalert@redhat.com", "url": "http://marc.info/?l=oss-security&m=125649553414700&w=2"}, {"source": "secalert@redhat.com", "tags": ["Exploit", "Patch"], "url": "http://seclists.org/fulldisclosure/2009/Oct/299"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/37135"}, {"source": "secalert@redhat.com", "url": "http://securitytracker.com/id?1023076"}, {"source": "secalert@redhat.com", "tags": ["Patch"], "url": "http://vrt-sourcefire.blogspot.com/2009/10/snort-2851-release.html"}, {"source": "secalert@redhat.com", "url": "http://www.openwall.com/lists/oss-security/2009/10/25/5"}, {"source": "secalert@redhat.com", "url": "http://www.osvdb.org/59159"}, {"source": "secalert@redhat.com", "tags": ["Exploit", "Patch"], "url": "http://www.securityfocus.com/bid/36795"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2009/3014"}, {"source": "secalert@redhat.com", "tags": ["Exploit"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=530863"}, {"source": "secalert@redhat.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53912"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://dl.snort.org/snort-current/release_notes_2851.txt"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=oss-security&m=125649553414700&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Patch"], "url": "http://seclists.org/fulldisclosure/2009/Oct/299"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/37135"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securitytracker.com/id?1023076"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://vrt-sourcefire.blogspot.com/2009/10/snort-2851-release.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2009/10/25/5"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/59159"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Patch"], "url": "http://www.securityfocus.com/bid/36795"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2009/3014"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=530863"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53912"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "Snort: DoS (crash) while printing specially-crafted IPv6 packet using the -v option", "id": "530863", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=530863"}, "csaw": false, "cvss": {"cvss_base_score": "4.3", "cvss_scoring_vector": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "status": "draft"}, "details": ["Snort before 2.8.5.1, when the -v option is enabled, allows remote attackers to cause a denial of service (application crash) via a crafted IPv6 packet that uses the (1) TCP or (2) ICMP protocol."], "name": "CVE-2009-3641", "public_date": "2009-10-22T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2009-3641\nhttps://nvd.nist.gov/vuln/detail/CVE-2009-3641"], "threat_severity": "Moderate"}