CVE-2003-0795

🗓️ 15 Dec 2003 05:00:00Reported by mitreType

The vty layer in Quagga before 0.96.4, and Zebra 0.93b and earlier, does not verify sub-negotiation, allowing remote attackers to cause a denial of service

Reporter	Title	Published	Views	Family All 15
NVD	CVE-2003-0795	15 Dec 200305:00	–	nvd
Cvelist	CVE-2003-0795	18 Nov 200305:00	–	cvelist
securityvulns	Quagga remote vulnerability	15 Nov 200300:00	–	securityvulns
securityvulns	[RHSA-2003:307-01] Updated zebra packages fix security vulnerabilities	13 Nov 200300:00	–	securityvulns
Debian CVE	CVE-2003-0795	15 Dec 200305:00	–	debiancve
Tenable Nessus	Quagga < 0.96.4 Zebra Denial of Service Vulnerability	29 Jun 201200:00	–	nessus
Tenable Nessus	Debian DSA-415-1 : zebra - denial of service	29 Sep 200400:00	–	nessus
Tenable Nessus	RHEL 2.1 : zebra (RHSA-2003:305)	6 Jul 200400:00	–	nessus
Tenable Nessus	Quagga / Zebra Malformed Telnet Command Denial of Service	17 Nov 200300:00	–	nessus
OpenVAS	Debian Security Advisory DSA 415-1 (zebra)	17 Jan 200800:00	–	openvas

Nvd

Node

gnu zebraMatch0.91a

gnu zebraMatch0.92a

gnu zebraMatch0.93a

gnu zebraMatch0.93b

quagga quaggaRange≤0.96.3

quagga quaggaMatch0.95

quagga quaggaMatch0.96

quagga quaggaMatch0.96.1

quagga quaggaMatch0.96.2

sgi propackMatch2.2.1

sgi propackMatch2.3

Source	Link
marc	www.marc.info/
redhat	www.redhat.com/support/errata/RHSA-2003-305.html
redhat	www.redhat.com/support/errata/RHSA-2003-307.html
debian	www.debian.org/security/2004/dsa-415
secunia	www.secunia.com/advisories/10563

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

15 Dec 2003 05:00Current

6.2Medium risk

Vulners AI Score6.2

CVSS25

EPSS0.01593

CWE-20