RIPd in Quagga 0.98 and 0.99 prior to 20060503 does not properly enforce RIPv2 authentication requirements, which allows remote malicious users to modify routing state via RIPv1 RESPONSE packets.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
quagga quagga routing software suite 0.95 |
||
quagga quagga routing software suite 0.98.5 |
||
quagga quagga routing software suite |
||
quagga quagga routing software suite 0.96.2 |
||
quagga quagga routing software suite 0.96.3 |