Snort_TCP_Option_Decoding_Denial_of_Service_attack

This strike exploits a vulnerability in the Snort Network Intrusion Detection System. A TCP segment with a specially crafted option fields can cause the Snort process to dereference a NULL pointer when it is running in sniffer or packet logger mode. An attacker can leverage this vulnerability to cause the Snort system on a remote target to terminate. In an attack case, the vulnerable Snort server terminates, creating a denial of service condition. Since triggering this vulnerability requires that the server to be running in sniffer or packet logger mode, the termination of Snort does not leave a target or target network unprotected because the server is already running in a non-protective mode. This vulnerability cannot be exploited for code execution.