Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2012-0255
HistoryApr 05, 2012 - 12:00 a.m.

CVE-2012-0255

2012-04-0500:00:00
ubuntu.com
ubuntu.com
14

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.028 Low

EPSS

Percentile

90.5%

JSON

The BGP implementation in bgpd in Quagga before 0.99.20.1 does not properly
use message buffers for OPEN messages, which allows remote attackers to
cause a denial of service (assertion failure and daemon exit) via a message
associated with a malformed Four-octet AS Number Capability (aka AS4
capability).

OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchquagga< 0.99.20.1-0ubuntu0.10.04.2UNKNOWN
ubuntu11.04noarchquagga< 0.99.20.1-0ubuntu0.11.04.2UNKNOWN
ubuntu11.10noarchquagga< 0.99.20.1-0ubuntu0.11.10.2UNKNOWN
ubuntu12.04noarchquagga< 0.99.20.1-0ubuntu0.12.04.2UNKNOWN

Related

prion 1
cve 1
debiancve 1
nessus 15
openvas 18
debian 1
cert 1
ubuntu 1
osv 2
fedora 3
freebsd 1
gentoo 1
securityvulns 1
centos 1
veracode 3
redhat 1
oraclelinux 2
prion
prion
Design/Logic Flaw
2012-04-05 13:25:00
cve
cve
CVE-2012-0255
2012-04-05 13:25:00
debiancve
debiancve
CVE-2012-0255
2012-04-05 13:25:00
nessus
nessus
Ubuntu 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : quagga vulnerabilities (USN-1441-1)
2012-05-16 00:00:00
Fedora 17 : quagga-0.99.20.1-1.fc17 (2012-5352)
2012-04-20 00:00:00
Debian DSA-2459-2 : quagga - several vulnerabilities
2012-04-27 00:00:00
openvas
openvas
Debian Security Advisory DSA 2459-1 (quagga)
2012-04-30 00:00:00
Debian Security Advisory DSA 2459-1 (quagga)
2012-04-30 00:00:00
Ubuntu Update for quagga USN-1441-1
2012-05-17 00:00:00
debian
debian
[SECURITY] [DSA 2459-1] quagga security update
2012-04-26 05:56:28
cert
cert
Quagga contains multiple vulnerabilities
2012-03-23 00:00:00
ubuntu
ubuntu
Quagga vulnerabilities
2012-05-15 00:00:00
osv
osv
quagga - regression
2012-05-04 00:00:00
quagga - several
2012-05-04 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: quagga-0.99.20.1-1.fc17
2012-04-20 03:07:24
[SECURITY] Fedora 16 Update: quagga-0.99.20.1-1.fc16
2012-04-22 03:43:44
[SECURITY] Fedora 15 Update: quagga-0.99.20.1-1.fc15
2012-04-22 03:48:42
freebsd
freebsd
quagga -- multiple vulnerabilities
2012-03-23 00:00:00
gentoo
gentoo
Quagga: Multiple vulnerabilities
2013-10-10 00:00:00
securityvulns
securityvulns
quagga route daemon multiple security vulnerabilities
2011-10-10 00:00:00
centos
centos
quagga security update
2012-09-12 23:23:05
veracode
veracode
Denial Of Service (DoS)
2019-05-02 04:43:10
Denial Of Service (DoS)
2019-05-02 04:43:12
Denial Of Service (DoS)
2019-05-02 04:43:12
redhat
redhat
(RHSA-2012:1259) Moderate: quagga security update
2012-09-12 00:00:00
oraclelinux
oraclelinux
quagga security update
2012-09-12 00:00:00
quagga security and bug fix update
2017-03-27 00:00:00

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.028 Low

EPSS

Percentile

90.5%

JSON
Related for UB:CVE-2012-0255
prion1cve1debiancve1nessus15openvas18debian1cert1ubuntu1osv2fedora3freebsd1gentoo1securityvulns1centos1veracode3redhat1oraclelinux2