CyberSec.Space Logo
Back to CVE Browser

CVE-2006-5276

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0290%
EPSS Percentile22.84th
PublishedFeb 20, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic.

Affected Platforms (CPE)

πŸ“¦
Snort

Snort

<= 2.6.1.2
πŸ“¦
Snort

Snort

= 2.6.1
πŸ“¦
Snort

Snort

= 2.6.1.1
πŸ“¦
Snort

Snort

= 2.7_beta1
πŸ“¦
Sourcefire

Intrusion Sensor

= 4.1
πŸ“¦
Sourcefire

Intrusion Sensor

= 4.1
πŸ“¦
Sourcefire

Intrusion Sensor

= 4.5
πŸ“¦
Sourcefire

Intrusion Sensor

= 4.5
πŸ“¦
Sourcefire

Intrusion Sensor

= 4.6
πŸ“¦
Sourcefire

Intrusion Sensor

= 4.6

References & Advisories

πŸ”— http://fedoranews.org/updates/FEDORA-2007-206.shtml
πŸ”— http://iss.net/threats/257.html
πŸ”— http://secunia.com/advisories/24190
πŸ”— http://secunia.com/advisories/24235
πŸ”— http://secunia.com/advisories/24239
πŸ”— http://secunia.com/advisories/24240
πŸ”— http://secunia.com/advisories/24272
πŸ”— http://secunia.com/advisories/26746

Related Vulnerabilities

CVE-2003-020910.0

Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and earlier allows remote attackers to execute arbitr...

CVE-2003-003310.0

Buffer overflow in the RPC preprocessor for Snort 1.8 and 1.9.x before 1.9.1 allows remote attackers to execute arbitrary code via...

CVE-2009-42119.3

The U.S. Defense Information Systems Agency (DISA) Security Readiness Review (SRR) script for the Solaris x86 platform executes fi...

CVE-2016-14178.8

Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL hijac...