Snort.org: “You are only vulnerable if you are running snort with “FAST” output (which isn’t very fast) or in verbose mode Using barnyard? Using snortdb? You are not vulnerable.” Exploit code is here: Lurking in #Snort and #snort-gui on irc.net, I learned the following about this vulnerability by listening to Marty.com’s Marty.net talk about the vulnerability on the ircircle.net.”]
Source: https://taosecurity.blogspot.com/2004/12/details-on-snort-dos-condition-you-may.html