CVE-2008-1804

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
22/05/2008
Last modified:
09/04/2025

Description

preprocessors/spp_frag3.c in Sourcefire Snort before 2.8.1 does not properly identify packet fragments that have dissimilar TTL values, which allows remote attackers to bypass detection rules by using a different TTL for each fragment.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:* 2.8.0 (including)


References to Advisories, Solutions, and Tools