FrSIRT - Fedora Security Update Fixes Snort DCE/RPC Buffer Overflow Vulnerability / Exploit (Security Advisories)

French Security Incident Response Team

French

English

Fedora Security Update Fixes Snort DCE/RPC Buffer Overflow Vulnerability

Title : Fedora Security Update Fixes Snort DCE/RPC Buffer Overflow Vulnerability
Advisory ID : FrSIRT/ADV-2007-3106
CVE ID : CVE-2006-5276
Rated as : Critical

Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2007-09-11

Advisory Details

Description

Affected Products

Solution

References

Technical Description

A vulnerability has been identified in Fedora, which could be exploited by remote attackers to cause a denial of service or compromise an affected system [...]

Solution

Upgrade the affected packages :

1bed6359d6ca9cac4a84d81524af9fe360878b57 snort-snmp+flexresp-2.7.0.1-3.fc7.ppc64.rpm
5bcc0b366e7228dac77b9561235bbf93d1f8b02d snort-snmp-2.7.0.1-3.fc7.ppc64.rpm
95c5f5ce3edafbabdbea7b2edca9dbbccd677df9 snort-mysql-2.7.0.1-3.fc7.ppc64.rpm
141d8211ea6789bd8a5549b2a1d03c7cb31aa888 snort-postgresql-2.7.0.1-3.fc7.ppc64.rpm
f3bba6a639492252b9b719d369339dcb3317c313 snort-debuginfo-2.7.0.1-3.fc7.ppc64.rpm
8d0eb26e3ab21d24d13e3a1a3f43659e339048e9 snort-2.7.0.1-3.fc7.ppc64.rpm
5fd1156d3a9426011a637af55acd0613a59351ee snort-postgresql+flexresp-2.7.0.1-3.fc7.ppc64.rpm
012d6ecc09ab7a27f79409baf45d73624874722c snort-bloat-2.7.0.1-3.fc7.ppc64.rpm
6eb063fe7b5b5295b48ee2f8090223365fd7483b snort-plain+flexresp-2.7.0.1-3.fc7.ppc64.rpm
4b4b69dddb2977b9004cf03aea65e480160ed612 snort-mysql+flexresp-2.7.0.1-3.fc7.ppc64.rpm
63d7e2da05c69ccc0625be6ff10aa0a6aed0f8b6 snort-mysql+flexresp-2.7.0.1-3.fc7.i386.rpm
cce93cd0247ef09b6f7bb8cb2e5a70394a37bff8 snort-postgresql+flexresp-2.7.0.1-3.fc7.i386.rpm
8fecae144be09c9d009ded646a17655a2b1efc86 snort-snmp+flexresp-2.7.0.1-3.fc7.i386.rpm
b52a01d6d991fd9751e31732b052d08faf33db3b snort-mysql-2.7.0.1-3.fc7.i386.rpm
f94eedc004e68b1de4213ee1733d7397a77684c8 snort-snmp-2.7.0.1-3.fc7.i386.rpm
08cf657f1cda3383f2ea56522765531348c4a868 snort-postgresql-2.7.0.1-3.fc7.i386.rpm
6f07411a7881565d2585c9e5bb500f9d98c85746 snort-2.7.0.1-3.fc7.i386.rpm
f913b300c806ebc83a4343f538678759d7646d9e snort-debuginfo-2.7.0.1-3.fc7.i386.rpm
1d3ffc1593d2f76c4a545ee3da5628c29c0394fb snort-plain+flexresp-2.7.0.1-3.fc7.i386.rpm
496122e2feb2713a695f1c4a5e905c0e29517908 snort-bloat-2.7.0.1-3.fc7.i386.rpm
1fc1a67ec68540280def44f7c92770f7de763cad snort-snmp+flexresp-2.7.0.1-3.fc7.x86_64.rpm
8dded86814319b9c0fe99175f31d7497f27a6988 snort-snmp-2.7.0.1-3.fc7.x86_64.rpm
e17aea188599001ea94f6d00f827edc3f0cc5e4b snort-2.7.0.1-3.fc7.x86_64.rpm
b105427850111eff399e56bbfd6de4df847d65c6 snort-bloat-2.7.0.1-3.fc7.x86_64.rpm
d7ed50b0eb17b53c36386680005ec19d1ea7b920 snort-postgresql+flexresp-2.7.0.1-3.fc7.x86_64.rpm
539b3b13154e17d664fc036da2ed3f8575456f56 snort-mysql+flexresp-2.7.0.1-3.fc7.x86_64.rpm
d5ae3ca9dd8aa93f6211a82a1128a76bfe10b53b snort-postgresql-2.7.0.1-3.fc7.x86_64.rpm
970f0e492c8f49413b97ad22edd450f8b47ffbed snort-plain+flexresp-2.7.0.1-3.fc7.x86_64.rpm
80a19053d135e6842b48b9fc9e5afd77fd5b9558 snort-debuginfo-2.7.0.1-3.fc7.x86_64.rpm
a26a5d181aca2d6f0f63aed15a7b557c8230bfee snort-mysql-2.7.0.1-3.fc7.x86_64.rpm
449f04f3b72b80da3cde52959d3d3895b6100c50 snort-postgresql+flexresp-2.7.0.1-3.fc7.ppc.rpm
d318047d8d1d0aa9489898274069c98ef796dcc4 snort-bloat-2.7.0.1-3.fc7.ppc.rpm
8e0d5139ec89b339037b5991c6f701d49bee96ce snort-snmp-2.7.0.1-3.fc7.ppc.rpm
738283b8e344ef148cb92459006b5f391417c443 snort-snmp+flexresp-2.7.0.1-3.fc7.ppc.rpm
da23ca1471598cfc8cfad0815dec0645df537b81 snort-postgresql-2.7.0.1-3.fc7.ppc.rpm
63accb6fcffbe05ff24ec1d755a407b663ca0210 snort-mysql-2.7.0.1-3.fc7.ppc.rpm
defcc2357995d2fff99648258e86aebc4ac78142 snort-debuginfo-2.7.0.1-3.fc7.ppc.rpm
f7560ab2bc2b938384fb71fb1e10428c8fb54016 snort-mysql+flexresp-2.7.0.1-3.fc7.ppc.rpm
52ab95fd4ebedf06fe5f80f8b4db766a01fabb6e snort-2.7.0.1-3.fc7.ppc.rpm
481baeb9ae1f0e4129c17e2f424e2c966291de39 snort-plain+flexresp-2.7.0.1-3.fc7.ppc.rpm
d1ced89f69a50b7f1c5d28c44b90a67f6c7ffc6f snort-2.7.0.1-3.fc7.src.rpm

ChangeLog

2007-09-11 : Initial release

Vulnerability Management

Subscribe to FrSIRT VNS and receive real-time e-mail and SMS alerts when new vulnerabilities, exploits, or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form or by email to updates@frsirt.com.

Mailinglist

	Microsoft Office Word Document Handling Code Execution Vulnerability
	Microsoft SQL Server Privilege Escalation Vulnerabilities (MS08-040)
	Microsoft Exchange Server Cross Site Scripting Issues (MS08-039)
	Microsoft Windows Explorer Remote Code Execution (MS08-038)
	Microsoft Windows Multiple DNS Spoofing Vulnerabilities (MS08-037)
	Microsoft Access Snapshot Viewer ActiveX Control Vulnerability
	Microsoft Internet Explorer Frame Cross-Domain Scripting Vulnerability

	IBM WebSphere Application Server Security Exposure Vulnerabilities
	IBM AIX DNS Transaction ID Remote Cache Poisoning Vulnerability
	IBM Tivoli Directory Server Entry Handling Double-Free Vulnerability
	IBM AFP Viewer Plug-In "SRC" Property Buffer Overflow Vulnerability
	IBM Hardware Management Console Cross Site Scripting Vulnerabilities
	IBM OS/400 BrSmRcvAndCheck Local Buffer Overflow Vulnerability
	IBM DB2 Multiple Buffer Overflow and Security Bypass Vulnerabilities

	Apple iPhone and iPod touch Multiple Code Execution Vulnerabilities
	Apple Xcode Code Execution and Information Disclosure Vulnerabilities
	Apple TV Data Processing Remote Code Execution Vulnerabilities
	Apple Mac OS X Command Execution and Security Bypass Issues
	Apple Safari for Mac OS X Remote Code Execution Vulnerability
	Apple Mac OS X ARDAgent Local Privilege Escalation Vulnerability
	Apple Safari Code Execution and Information Disclosure Vulnerabilities