bgpd/bgp_attr.c in Quagga 0.98.6 and previous versions, and 0.99.6 and previous versions 0.99 versions, does not validate length values in the MP_REACH_NLRI and MP_UNREACH_NLRI attributes, which allows remote malicious users to cause a denial of service (daemon crash or exit) via crafted UPDATE messages that trigger an assertion error or out of bounds read.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
quagga quagga 0.98.0 |
||
quagga quagga 0.98.1 |
||
quagga quagga 0.97.3 |
||
quagga quagga 0.97.4 |
||
quagga quagga 0.96 |
||
quagga quagga 0.95 |
||
quagga quagga 0.98.4 |
||
quagga quagga 0.97.0 |
||
quagga quagga 0.96.4 |
||
quagga quagga 0.96.2 |
||
quagga quagga 0.98.2 |
||
quagga quagga 0.98.3 |
||
quagga quagga 0.97.5 |
||
quagga quagga 0.96.5 |
||
quagga quagga |
||
quagga quagga 0.98.5 |
||
quagga quagga 0.97.1 |
||
quagga quagga 0.97.2 |
||
quagga quagga 0.96.3 |
||
quagga quagga 0.96.1 |