Lucene search

[email protected]CVE-2007-1995

HistoryApr 12, 2007 - 10:19 a.m.

CVE-2007-1995

2007-04-1210:19:00

CWE-20

[email protected]

web.nvd.nist.gov

quagga

bgpd

bgp_attr.c

denial of service

vulnerability

cve-2007-1995

nvd

6.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:N/I:N/A:C

6.2 Medium

AI Score

Confidence

High

0.025 Low

EPSS

Percentile

90.2%

JSON

bgpd/bgp_attr.c in Quagga 0.98.6 and earlier, and 0.99.6 and earlier 0.99 versions, does not validate length values in the MP_REACH_NLRI and MP_UNREACH_NLRI attributes, which allows remote attackers to cause a denial of service (daemon crash or exit) via crafted UPDATE messages that trigger an assertion error or out of bounds read.

Affected configurations

NVD

Node

quaggaquaggaRange≤0.98.6

quaggaquaggaMatch0.95

quaggaquaggaMatch0.96

quaggaquaggaMatch0.96.1

quaggaquaggaMatch0.96.2

quaggaquaggaMatch0.96.3

quaggaquaggaMatch0.96.4

quaggaquaggaMatch0.96.5

quaggaquaggaMatch0.97.0

quaggaquaggaMatch0.97.1

quaggaquaggaMatch0.97.2

quaggaquaggaMatch0.97.3

quaggaquaggaMatch0.97.4

quaggaquaggaMatch0.97.5

quaggaquaggaMatch0.98.0

quaggaquaggaMatch0.98.1

quaggaquaggaMatch0.98.2

quaggaquaggaMatch0.98.3

quaggaquaggaMatch0.98.4

quaggaquaggaMatch0.98.5

CPENameOperatorVersion
quagga:quaggaquaggale0.98.6
quagga:quaggaquaggaeq0.95
quagga:quaggaquaggaeq0.96
quagga:quaggaquaggaeq0.96.1
quagga:quaggaquaggaeq0.96.2
quagga:quaggaquaggaeq0.96.3
quagga:quaggaquaggaeq0.96.4
quagga:quaggaquaggaeq0.96.5
quagga:quaggaquaggaeq0.97.0
quagga:quaggaquaggaeq0.97.1

CPE	Name	Operator	Version
quagga:quagga	quagga	le	0.98.6
quagga:quagga	quagga	eq	0.95
quagga:quagga	quagga	eq	0.96
quagga:quagga	quagga	eq	0.96.1
quagga:quagga	quagga	eq	0.96.2
quagga:quagga	quagga	eq	0.96.3
quagga:quagga	quagga	eq	0.96.4
quagga:quagga	quagga	eq	0.96.5
quagga:quagga	quagga	eq	0.97.0
quagga:quagga	quagga	eq	0.97.1