CVE-2007-1398

CVE Database · CVE-2007-1398

CVE-2007-1398

· N/AModified

CVSS v3.1

N/A

EPSS

5.57%

Published

Mar 10, 2007

Modified

Apr 22, 2026

Public PoC / Exploit (2)

All weaponized →

Exploit-DBSnort 2.6.1.1/2.6.1.2/2.7.0 - 'fragementation' Remote Denial of Service TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The frag3 preprocessor in Snort 2.6.1.1, 2.6.1.2, and 2.7.0 beta, when configured for inline use on Linux without the ip_conntrack module loaded, allows remote attackers to cause a denial of service (segmentation fault and application crash) via certain UDP packets produced by send_morefrag_packet and send_overlap_packet.

Affected Products (4)

linux · linux_kernel

snort · snortvulnerable

References (8)

http://www.osvdb.org/33024

http://www.securityfocus.com/bid/22872

http://www.snort.org/docs/release_notes/release_notes_2613.txt

https://www.exploit-db.com/exploits/3434

http://www.osvdb.org/33024

http://www.securityfocus.com/bid/22872

http://www.snort.org/docs/release_notes/release_notes_2613.txt

https://www.exploit-db.com/exploits/3434

KEV Catalog EPSS Scores Vendors All CVEs