Lucene search

K
ubuntucveUbuntu.comUB:CVE-2012-0250
HistoryApr 05, 2012 - 12:00 a.m.

CVE-2012-0250

2012-04-0500:00:00
ubuntu.com
ubuntu.com
20

CVSS2

3.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.025

Percentile

90.4%

Buffer overflow in the OSPFv2 implementation in ospfd in Quagga before
0.99.20.1 allows remote attackers to cause a denial of service (daemon
crash) via a Link State Update (aka LS Update) packet containing a
network-LSA link-state advertisement for which the data-structure length is
smaller than the value in the Length header field.

OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchquagga< 0.99.20.1-0ubuntu0.10.04.2UNKNOWN
ubuntu11.04noarchquagga< 0.99.20.1-0ubuntu0.11.04.2UNKNOWN
ubuntu11.10noarchquagga< 0.99.20.1-0ubuntu0.11.10.2UNKNOWN
ubuntu12.04noarchquagga< 0.99.20.1-0ubuntu0.12.04.2UNKNOWN

CVSS2

3.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.025

Percentile

90.4%