Lucene search
K

4 matches found

Veracode
Veracode
added 2020/05/10 11:20 p.m.29 views

Denial Of Service (DoS)

quagga is vulnerable to denial of service. The aspathput function in bgpd/bgpaspath.c allows remote attackers to cause session drop via malicious BGP UPDATE messages as ASPATH size calculation for long paths counts certain bytes twice and consequently constructs an invalid message...

7.5CVSS5.7AI score0.1879EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/12/21 12:0 a.m.7 views

The vulnerability of the aspath_put function in the Quagga software package for the Debian GNU/Linux operating system allows a hacker to cause a service failure.

The vulnerability of the aspathput function in the bgpd/bgpaspath.c file of the Quagga software for the Debian GNU/Linux operating system exists due to an incorrect mechanism for checking input data. The size of the ASPATH is calculated twice. Exploiting this vulnerability could allow a malicious...

7.5CVSS7.2AI score0.1879EPSS
Exploits0References7Affected Software2
Prion
Prion
added 2017/10/29 8:29 p.m.23 views

Design/Logic Flaw

The aspathput function in bgpd/bgpaspath.c in Quagga before 1.2.2 allows remote attackers to cause a denial of service session drop via BGP UPDATE messages, because ASPATH size calculation for long paths counts certain bytes twice and consequently constructs an invalid message...

5CVSS7.2AI score0.1879EPSS
Exploits0References5Affected Software2
AlpineLinux
AlpineLinux
added 2017/10/29 8:0 p.m.55 views

CVE-2017-16227

The aspathput function in bgpd/bgpaspath.c in Quagga before 1.2.2 allows remote attackers to cause a denial of service session drop via BGP UPDATE messages, because ASPATH size calculation for long paths counts certain bytes twice and consequently constructs an invalid message...

7.5CVSS7.5AI score0.1879EPSS
Exploits0
Rows per page
Query Builder