internetnews.com: Snort's Intrusion System Blows a Hole
Oct 21, 2005, 20:30 (1 Talkback[s])
(Other stories by Sean Michael Kerner)
"In an interesting case of technical irony, a tool used to help
security professionals detect intrusions into their networks is in
fact vulnerable to intrusions itself.
"US-CERT issued an advisory this week warning that the open
source Snort intrusion detection system had a highly critical
buffer overflow vulnerability that could allow an attacker to
execute arbitrary code..."