633 matches found
PT-2018-16935 · Quagga +3 · Quagga +3
Name of the Vulnerable Software and Affected Versions: Quagga versions prior to 1.2.3 Description: The issue is related to a bug in the parsing of "Capabilities" in BGP OPEN messages. Specifically, the bgp packet.c:bgp capability msg parse function can enter an infinite loop on invalid capabiliti...
PT-2018-3095 · Quagga +3 · Quagga +3
Name of the Vulnerable Software and Affected Versions: Quagga versions prior to 1.2.3 Description: The issue is related to errors in processing internal BGP code-to-string conversion tables used for debug, based on input. This can lead to a potential denial of service. Recommendations: For versio...
The vulnerability of the aspath_put function in the Quagga software package for the Debian GNU/Linux operating system allows a hacker to cause a service failure.
The vulnerability of the aspathput function in the bgpd/bgpaspath.c file of the Quagga software for the Debian GNU/Linux operating system exists due to an incorrect mechanism for checking input data. The size of the ASPATH is calculated twice. Exploiting this vulnerability could allow a malicious...
Cumulus Linux FRRouting bgpd Information Disclosure Vulnerability
Cumulus Linux is an open network operating system from Cumulus Networks, Inc. FRRouting FRR is one of the suite of IP routing protocols for Linux and Unix platforms. bgpd is one of the border gateway protocols. A security vulnerability in bgpd in versions of FRR prior to 2.0.2 and 3.x prior to...
Cisco IOS XE Software Ethernet Virtual Private Network Denial of Service Vulnerability
Cisco IOS XE Software is a set of operating systems developed by Cisco for its network devices.Ethernet Virtual Private Network EVPN is one of the Ethernet virtual private network systems.Border Gateway Protocol BGP is one of the border gateway protocols. Border Gateway Protocol BGP is one of the...
ALPINE-CVE-2017-16227
The aspathput function in bgpd/bgpaspath.c in Quagga before 1.2.2 allows remote attackers to cause a denial of service session drop via BGP UPDATE messages, because ASPATH size calculation for long paths counts certain bytes twice and consequently constructs an invalid message...
UBUNTU-CVE-2017-16227
The aspathput function in bgpd/bgpaspath.c in Quagga before 1.2.2 allows remote attackers to cause a denial of service session drop via BGP UPDATE messages, because ASPATH size calculation for long paths counts certain bytes twice and consequently constructs an invalid message...
Juniper Junos OS Denial of Service Vulnerability (CNVD-2017-33973)
Juniper Junos OS is a Juniper Networks network operating system designed for the company's hardware systems. The OS provides a secure programming interface and the Junos SDK. A security vulnerability exists in Juniper Junos OS version 16.1R1. An attacker could exploit this vulnerability to cause ...
Juniper Junos OS Denial of Service Vulnerability (CNVD-2017-32281)
Juniper Junos OS is a Juniper Networks network operating system designed for the company's hardware systems. The OS provides a secure programming interface and the Junos SDK. A security vulnerability exists in Juniper Junos OS version 16.1R1. An attacker could exploit this vulnerability to cause ...
CVE-2017-10607
Juniper Networks Junos OS 16.1R1, and services releases based off of 16.1R1, are vulnerable to the receipt of a crafted BGP Protocol Data Unit PDU sent directly to the router, which can cause the RPD routing process to crash and restart. Unlike BGP UPDATEs, which are transitive in nature, this...
PT-2017-3918
Name of the Vulnerable Software and Affected Versions tcpdump versions prior to 4.9.3 Description The issue is related to a buffer over-read in the BGP parser of the tcpdump utility, specifically in the bgp capabilities print function. This can be exploited by a remote attacker to cause a denial ...
DEBIAN-CVE-2017-13053
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:decodertroutinginfo...
DEBIAN-CVE-2017-13046
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgpattrprint...
DEBIAN-CVE-2017-13043
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:decodemulticastvpn...
Tcpdump BGP parser buffer overflow vulnerability (CNVD-2017-27756)
Tcpdump is a set of sniffing tools developed by the Tcpdump team that run at the command line. The tools allow users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer.BGP parser is one of the Border Gateway Protocol parsers. A buffer...
Tcpdump BGP Parser Buffer Overflow Vulnerability
Tcpdump is a set of sniffing tools developed by the Tcpdump team that run at the command line. The tools allow users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer.BGP parser is one of the border gateway protocol parsers. A buffer...
Tcpdump BGP parser buffer overflow vulnerability (CNVD-2017-28247)
Tcpdump is a set of sniffing tools developed by the Tcpdump team that run at the command line. The tools allow users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer.BGP parser is one of the border gateway protocol parsers. A buffer...
Tcpdump BGP parser buffer overflow vulnerability (CNVD-2017-28240)
Tcpdump is a set of sniffing tools developed by the Tcpdump team that run at the command line. The tools allow users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer.BGP parser is one of the border gateway protocol parsers. A buffer...
Tcpdump BGP parser buffer overflow vulnerability (CNVD-2017-28250)
Tcpdump is a set of sniffing tools developed by the Tcpdump team that run at the command line. The tools allow users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer.BGP parser is one of the border gateway protocol parsers. A buffer...
UBUNTU-CVE-2017-13046
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgpattrprint...