Heap-based buffer overflow in the ecommunity_ecom2str function in bgp_ecommunity.c in bgpd in Quagga prior to 0.99.19 allows remote malicious users to cause a denial of service (daemon crash) or possibly execute arbitrary code by sending a crafted BGP UPDATE message over IPv4.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
quagga quagga 0.99.11 |
||
quagga quagga 0.99.2 |
||
quagga quagga 0.97.5 |
||
quagga quagga 0.95 |
||
quagga quagga 0.98.3 |
||
quagga quagga 0.96.3 |
||
quagga quagga 0.99.4 |
||
quagga quagga 0.99.7 |
||
quagga quagga 0.99.14 |
||
quagga quagga 0.99.5 |
||
quagga quagga 0.96.5 |
||
quagga quagga 0.98.0 |
||
quagga quagga 0.99.16 |
||
quagga quagga 0.96.1 |
||
quagga quagga 0.98.1 |
||
quagga quagga 0.96.4 |
||
quagga quagga 0.98.5 |
||
quagga quagga 0.97.3 |
||
quagga quagga 0.99.17 |
||
quagga quagga 0.99.3 |
||
quagga quagga 0.99.13 |
||
quagga quagga 0.99.6 |
||
quagga quagga 0.98.6 |
||
quagga quagga 0.97.4 |
||
quagga quagga 0.98.4 |
||
quagga quagga 0.99.12 |
||
quagga quagga 0.98.2 |
||
quagga quagga 0.97.1 |
||
quagga quagga 0.97.0 |
||
quagga quagga 0.96.2 |
||
quagga quagga 0.99.9 |
||
quagga quagga 0.99.1 |
||
quagga quagga |
||
quagga quagga 0.97.2 |
||
quagga quagga 0.99.15 |
||
quagga quagga 0.99.10 |
||
quagga quagga 0.99.8 |
||
quagga quagga 0.96 |
Vulmon