Lucene search
K

633 matches found

Positive Technologies
Positive Technologies
added 2018/02/13 12:0 a.m.6 views

PT-2018-16935 · Quagga +3 · Quagga +3

Name of the Vulnerable Software and Affected Versions: Quagga versions prior to 1.2.3 Description: The issue is related to a bug in the parsing of "Capabilities" in BGP OPEN messages. Specifically, the bgp packet.c:bgp capability msg parse function can enter an infinite loop on invalid capabiliti...

9.8CVSS7.5AI score0.74599EPSS
Exploits8References78
Positive Technologies
Positive Technologies
added 2018/02/13 12:0 a.m.5 views

PT-2018-3095 · Quagga +3 · Quagga +3

Name of the Vulnerable Software and Affected Versions: Quagga versions prior to 1.2.3 Description: The issue is related to errors in processing internal BGP code-to-string conversion tables used for debug, based on input. This can lead to a potential denial of service. Recommendations: For versio...

9.8CVSS7.5AI score0.74599EPSS
Exploits8References80
BDU FSTEC
BDU FSTEC
added 2017/12/21 12:0 a.m.8 views

The vulnerability of the aspath_put function in the Quagga software package for the Debian GNU/Linux operating system allows a hacker to cause a service failure.

The vulnerability of the aspathput function in the bgpd/bgpaspath.c file of the Quagga software for the Debian GNU/Linux operating system exists due to an incorrect mechanism for checking input data. The size of the ASPATH is calculated twice. Exploiting this vulnerability could allow a malicious...

7.5CVSS7.2AI score0.1879EPSS
Exploits0References7Affected Software2
CNVD
CNVD
added 2017/11/09 12:0 a.m.5 views

Cumulus Linux FRRouting bgpd Information Disclosure Vulnerability

Cumulus Linux is an open network operating system from Cumulus Networks, Inc. FRRouting FRR is one of the suite of IP routing protocols for Linux and Unix platforms. bgpd is one of the border gateway protocols. A security vulnerability in bgpd in versions of FRR prior to 2.0.2 and 3.x prior to...

7.5CVSS6.6AI score0.02494EPSS
Exploits0References1
CNVD
CNVD
added 2017/11/06 12:0 a.m.4 views

Cisco IOS XE Software Ethernet Virtual Private Network Denial of Service Vulnerability

Cisco IOS XE Software is a set of operating systems developed by Cisco for its network devices.Ethernet Virtual Private Network EVPN is one of the Ethernet virtual private network systems.Border Gateway Protocol BGP is one of the border gateway protocols. Border Gateway Protocol BGP is one of the...

7.1CVSS6.8AI score0.05367EPSS
Exploits0References1
OSV
OSV
added 2017/10/29 8:29 p.m.1 views

ALPINE-CVE-2017-16227

The aspathput function in bgpd/bgpaspath.c in Quagga before 1.2.2 allows remote attackers to cause a denial of service session drop via BGP UPDATE messages, because ASPATH size calculation for long paths counts certain bytes twice and consequently constructs an invalid message...

7.5CVSS6.8AI score0.1879EPSS
Exploits0References1
OSV
OSV
added 2017/10/29 12:0 a.m.5 views

UBUNTU-CVE-2017-16227

The aspathput function in bgpd/bgpaspath.c in Quagga before 1.2.2 allows remote attackers to cause a denial of service session drop via BGP UPDATE messages, because ASPATH size calculation for long paths counts certain bytes twice and consequently constructs an invalid message...

7.5CVSS7AI score0.1879EPSS
Exploits0References5
CNVD
CNVD
added 2017/10/19 12:0 a.m.7 views

Juniper Junos OS Denial of Service Vulnerability (CNVD-2017-33973)

Juniper Junos OS is a Juniper Networks network operating system designed for the company's hardware systems. The OS provides a secure programming interface and the Junos SDK. A security vulnerability exists in Juniper Junos OS version 16.1R1. An attacker could exploit this vulnerability to cause ...

7.5CVSS6.7AI score0.01034EPSS
Exploits0References1
CNVD
CNVD
added 2017/10/19 12:0 a.m.5 views

Juniper Junos OS Denial of Service Vulnerability (CNVD-2017-32281)

Juniper Junos OS is a Juniper Networks network operating system designed for the company's hardware systems. The OS provides a secure programming interface and the Junos SDK. A security vulnerability exists in Juniper Junos OS version 16.1R1. An attacker could exploit this vulnerability to cause ...

7.5CVSS6.6AI score0.01055EPSS
Exploits0References1
OSV
OSV
added 2017/10/13 5:29 p.m.9 views

CVE-2017-10607

Juniper Networks Junos OS 16.1R1, and services releases based off of 16.1R1, are vulnerable to the receipt of a crafted BGP Protocol Data Unit PDU sent directly to the router, which can cause the RPD routing process to crash and restart. Unlike BGP UPDATEs, which are transitive in nature, this...

7.5CVSS5.7AI score0.01034EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2017/10/08 12:0 a.m.2 views

PT-2017-3918

Name of the Vulnerable Software and Affected Versions tcpdump versions prior to 4.9.3 Description The issue is related to a buffer over-read in the BGP parser of the tcpdump utility, specifically in the bgp capabilities print function. This can be exploited by a remote attacker to cause a denial ...

9.8CVSS7.3AI score0.06816EPSS
Exploits4References476
OSV
OSV
added 2017/09/14 6:29 a.m.2 views

DEBIAN-CVE-2017-13053

The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:decodertroutinginfo...

9.8CVSS9.7AI score0.03241EPSS
Exploits0References1
OSV
OSV
added 2017/09/14 6:29 a.m.2 views

DEBIAN-CVE-2017-13046

The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgpattrprint...

9.8CVSS9.8AI score0.03241EPSS
Exploits0References1
OSV
OSV
added 2017/09/14 6:29 a.m.1 views

DEBIAN-CVE-2017-13043

The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:decodemulticastvpn...

9.8CVSS7.5AI score0.03241EPSS
Exploits0References1
CNVD
CNVD
added 2017/09/14 12:0 a.m.1 views

Tcpdump BGP parser buffer overflow vulnerability (CNVD-2017-27756)

Tcpdump is a set of sniffing tools developed by the Tcpdump team that run at the command line. The tools allow users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer.BGP parser is one of the Border Gateway Protocol parsers. A buffer...

9.8CVSS9.4AI score0.02527EPSS
Exploits0References1
CNVD
CNVD
added 2017/09/14 12:0 a.m.1 views

Tcpdump BGP Parser Buffer Overflow Vulnerability

Tcpdump is a set of sniffing tools developed by the Tcpdump team that run at the command line. The tools allow users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer.BGP parser is one of the border gateway protocol parsers. A buffer...

9.8CVSS9.4AI score0.02389EPSS
Exploits0References1
CNVD
CNVD
added 2017/09/14 12:0 a.m.1 views

Tcpdump BGP parser buffer overflow vulnerability (CNVD-2017-28247)

Tcpdump is a set of sniffing tools developed by the Tcpdump team that run at the command line. The tools allow users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer.BGP parser is one of the border gateway protocol parsers. A buffer...

9.8CVSS9.4AI score0.03241EPSS
Exploits0References1
CNVD
CNVD
added 2017/09/14 12:0 a.m.4 views

Tcpdump BGP parser buffer overflow vulnerability (CNVD-2017-28240)

Tcpdump is a set of sniffing tools developed by the Tcpdump team that run at the command line. The tools allow users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer.BGP parser is one of the border gateway protocol parsers. A buffer...

9.8CVSS9.4AI score0.03241EPSS
Exploits0References1
CNVD
CNVD
added 2017/09/14 12:0 a.m.3 views

Tcpdump BGP parser buffer overflow vulnerability (CNVD-2017-28250)

Tcpdump is a set of sniffing tools developed by the Tcpdump team that run at the command line. The tools allow users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer.BGP parser is one of the border gateway protocol parsers. A buffer...

9.8CVSS9.4AI score0.03241EPSS
Exploits0References1
OSV
OSV
added 2017/09/13 12:0 a.m.3 views

UBUNTU-CVE-2017-13046

The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgpattrprint...

9.8CVSS7AI score0.03241EPSS
Exploits0References4
Rows per page
Query Builder