230 matches found
CVE-2016-1270
The rpd daemon in Juniper Junos OS before 12.1X44-D60, 12.1X46 before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R9, 12.3X48 before 12.3X48-D20, 13.2 before 13.2R7, 13.2X51 before 13.2X51-D40, 13.3 before 13.3R6, 14.1 before 14.1R4, and 14.2 before 14.2R2, when configured with...
CVE-2014-2542
Cross-site scripting XSS vulnerability in the Rendezvous Daemon rvd, Rendezvous Routing Daemon rvrd, Rendezvous Secure Daemon rvsd, and Rendezvous Secure Routing Daemon rvsrd in TIBCO Rendezvous before 8.4.2, Messaging Appliance before 8.7.1, and Substation ES before 2.8.1 allows remote attackers...
Improper access control
The Rendezvous Daemon rvd, Rendezvous Routing Daemon rvrd, Rendezvous Secure Daemon rvsd, and Rendezvous Secure Routing Daemon rvsrd in TIBCO Rendezvous before 8.4.2, Messaging Appliance before 8.7.1, and Substation ES before 2.8.1 do not properly implement access control, which allows remote...
Buffer overflow
Buffer overflow in the Rendezvous Daemon rvd, Rendezvous Routing Daemon rvrd, Rendezvous Secure Daemon rvsd, and Rendezvous Secure Routing Daemon rvsrd in TIBCO Rendezvous before 8.4.2, Messaging Appliance before 8.7.1, and Substation ES before 2.8.1 allows remote attackers to execute arbitrary...
CVE-2014-2543
Summary: CVE-2014-2543 is a buffer overflow in TIBCO Rendezvous components (rvd, rvrd, rvsd, rvsrd) that could allow remote code execution when a directly connected client sends crafted data. The issue affects TIBCO Rendezvous 8.4.1 and earlier, Messaging Appliance 8.7.0 and earlier, and Substati...
CVE-2014-2542
CVE-2014-2542 describes a cross-site scripting (XSS) vulnerability in TIBCO Rendezvous components: Rendezvous Daemon (rvd), Rendezvous Routing Daemon (rvrd), Rendezvous Secure Daemon (rvsd), and Rendezvous Secure Routing Daemon (rvsrd). Affected versions are Rendezvous before 8.4.2, Messaging App...
Juniper Networks Junos OS Oversized BGP UPDATE DoS Vulnerability
Denial of Service vulnerability in routing daemon from oversized BGP UPDATE message. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Juniper Networks Junos OS PIM Join Flooding Denial of Service Vulnerability
A large number of crafted PIM join messages can crash the RPD routing daemon. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Input validation
Juniper Junos 10.0 before 10.0S28, 10.4 before 10.4R7, 11.1 before 11.1R5, 11.2 before 11.2R2, and 11.4 before 11.4R1, when in a Next-Generation Multicast VPN NGEN MVPN environment, allows remote attackers to cause a denial of service RPD routing daemon crash via a large number of crafted PIM S,G...
CVE-2013-6170
CVE-2013-6170 affects Juniper Networks Junos OS (Junos 10.0 before 10.0S28, 10.4 before 10.4R7, 11.1 before 11.1R5, 11.2 before 11.2R2, and 11.4 before 11.4R1) in a Next-Generation Multicast VPN (NGEN MVPN) environment. The vulnerability arises from handling a large number of crafted PIM (S,G) jo...
Quagga: Multiple vulnerabilities
Background Quagga is a free routing daemon replacing Zebra supporting RIP, OSPF and BGP. Description Multiple vulnerabilities have been discovered in Quagga. Please review the CVE identifiers referenced below for details. Impact A remote attacker may be able to cause arbitrary code execution or a...
Juniper Junos PIM Join Flood DoS (PSN-2013-01-808)
According to its self-reported version number, the remote Junos device has a denial of service vulnerability. Receiving a large number of specially crafted IPv4 or IPv6 PIM join messages in a Next-Generation Multicast VPN NGEN MVPN environment can cause the routing daemon to crash. C Tenable...
quagga: DoS (crash) by processing malformed extended community attribute in a route
The extended-community parser in bgpd in Quagga before 0.99.18 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a malformed Extended Communities attribute...
[SECURITY] [DSA 2497-1] quagga security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2497-1 [email protected] http://www.debian.org/security/ Florian Weimer June 20, 2012 http://www.debian.org/security/faq -...
DSA-2459-2 quagga - regression
Bulletin has no description...
DSA-2459-1 quagga - several
Bulletin has no description...
Debian Security Advisory DSA 2316-1 (quagga)
The remote host is missing an update to quagga announced via advisory DSA 2316-1. OpenVAS Vulnerability Test $Id: deb23161.nasl 6613 2017-07-07 12:08:40Z cfischer $ Description: Auto-generated from advisory DSA 2316-1 quagga Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...
Debian Security Advisory DSA 2147-1 (pimd)
The remote host is missing an update to pimd announced via advisory DSA 2147-1. OpenVAS Vulnerability Test $Id: deb21471.nasl 6613 2017-07-07 12:08:40Z cfischer $ Description: Auto-generated from advisory DSA 2147-1 pimd Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...
Debian DSA-2147-1 : pimd - insecure temporary files
Vincent Bernat discovered that pimd, a multicast routing daemon, creates files with predictable names upon the receipt of particular signals. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory...
[SECURITY] [DSA-2104-1] New quagga packages fix denial of service
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2104-1 [email protected] http://www.debian.org/security/ Florian Weimer September 06, 2010 http://www.debian.org/security/faq -...