News Stay informed about the latest enterprise technology news and product updates.

Snort problem — security flaw in security software

Sourcefire Inc. has plugged security holes in its popular Snort intrusion detection tool that could have allowed attackers to get in through the security software itself to run unauthorized code on a victim’s server.

The flaws in Snort’s DCE/RPC preprocessor would have allowed a stack-based buffer overflow, according to an advisory from Sourcefire. The preprocessor is enabled by default.

Sourcefire advised users to fix the flaw by upgrading to Snort version 2.6.2.3 or beta 2 of Snort 2.7.

The full version of this story appeared on TechTarget sister site SearchSecurity.com.

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

MicroscopeUK

SearchSecurity

SearchStorage

SearchNetworking

SearchCloudComputing

SearchDataManagement

SearchBusinessAnalytics

Close