Quagga vulnerability

2007-05-1700:00:00

ubuntu.com

6.2 Medium

AI Score

Confidence

Low

6.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:N/I:N/A:C

0.024 Low

EPSS

Percentile

89.8%

JSON

Releases

Ubuntu 7.04
Ubuntu 6.10
Ubuntu 6.06

Details

It was discovered that Quagga did not correctly verify length
information sent from configured peers. Remote malicious peers could
send a specially crafted UPDATE message which would cause bgpd to abort,
leading to a denial of service.

OSVersionArchitecturePackageVersionFilename
Ubuntu7.04noarchquagga< 0.99.6-2ubuntu3.1UNKNOWN
Ubuntu6.10noarchquagga< 0.99.4-4ubuntu1.1UNKNOWN
Ubuntu6.06noarchquagga< 0.99.2-1ubuntu3.1UNKNOWN