Do not just Snort at this vulnerability
Subject: General Tech | October 19, 2005 - 03:38 PM | Jeremy Hellstrom
Snort is an open-source tool that tries to detect and prevent attacks on systems and has also been included in up to 45 retail firewall products, plus many more open-source software. CNET has an article which describes a buffer overflow flaw in it, which hasn't been exploited ... yet. Keep your eyes open.
"A buffer overflow flaw exists in a Snort sensor designed to detect Back Orifice, an older
remote-controlled Trojan horse, Snort developer Sourcefire said in an advisory on Tuesday. An
attacker could commandeer a system running Snort 2.4.0 and higher by sending a specially crafted
network packet, it warned.
Sourcefire's warning prompted security provider Symantec to raise its ThreatCon global threat
index to Level 2, which means an outbreak is expected."
Here is some more Tech News from around the web:
t" TARGET="_blank">Oracle fixes bugs with mega patch @ CNET
- The Konfabulator 2.1.1 @
TARGET="_blank">Windows Vista Build 5231 Review @ CoolTechZone.com
TARGET="_blank">Apple's 5th Generation iPod and The Renewed iMac G5 @ HardwareZone
Dual Link DVI + USB KVM @ Anandtech
Digital SLR Camera Review @ ModSynergy.com