4 matches found
Denial Of Service (DoS)
quagga is vulnerable to denial of service. The aspathput function in bgpd/bgpaspath.c allows remote attackers to cause session drop via malicious BGP UPDATE messages as ASPATH size calculation for long paths counts certain bytes twice and consequently constructs an invalid message...
The vulnerability of the aspath_put function in the Quagga software package for the Debian GNU/Linux operating system allows a hacker to cause a service failure.
The vulnerability of the aspathput function in the bgpd/bgpaspath.c file of the Quagga software for the Debian GNU/Linux operating system exists due to an incorrect mechanism for checking input data. The size of the ASPATH is calculated twice. Exploiting this vulnerability could allow a malicious...
Design/Logic Flaw
The aspathput function in bgpd/bgpaspath.c in Quagga before 1.2.2 allows remote attackers to cause a denial of service session drop via BGP UPDATE messages, because ASPATH size calculation for long paths counts certain bytes twice and consequently constructs an invalid message...
CVE-2017-16227
The aspathput function in bgpd/bgpaspath.c in Quagga before 1.2.2 allows remote attackers to cause a denial of service session drop via BGP UPDATE messages, because ASPATH size calculation for long paths counts certain bytes twice and consequently constructs an invalid message...