Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-1059-1
HistoryMay 19, 2006 - 12:00 a.m.

quagga - several

2006-05-1900:00:00
Google
osv.dev
12

EPSS

0.161

Percentile

96.1%

JSON

Konstantin Gavrilenko discovered several vulnerabilities in quagga,
the BGP/OSPF/RIP routing daemon. The Common Vulnerabilities and
Exposures project identifies the following problems:

  • CVE-2006-2223
    Remote attackers may obtain sensitive information via RIPv1
    REQUEST packets even if the quagga has been configured to use MD5
    authentication.
  • CVE-2006-2224
    Remote attackers could inject arbitrary routes using the RIPv1
    RESPONSE packet even if the quagga has been configured to use MD5
    authentication.
  • CVE-2006-2276
    Fredrik Widell discovered that local users can cause a denial
    of service in a certain sh ip bgp command entered in the telnet
    interface.

The old stable distribution (woody) does not contain quagga packages.

For the stable distribution (sarge) these problems have been fixed in
version 0.98.3-7.2.

For the unstable distribution (sid) these problems have been fixed in
version 0.99.4-1.

We recommend that you upgrade your quagga package.

Related

nessus 10
ubuntu 1
openvas 4
gentoo 1
redhat 2
debian 2
centos 2
debiancve 3
prion 3
nvd 4
ubuntucve 3
cvelist 3
cve 4
exploitdb 2
osv 1
nessus
nessus
Debian DSA-1059-1 : quagga - several vulnerabilities
2006-10-14 00:00:00
CentOS 3 / 4 : quagga (CESA-2006:0525)
2006-07-03 00:00:00
GLSA-200605-15 : Quagga Routing Suite: Multiple vulnerabilities
2006-05-22 00:00:00
ubuntu
ubuntu
Quagga vulnerabilities
2006-05-16 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200605-15 (quagga)
2008-09-24 00:00:00
Debian: Security Advisory (DSA-1059-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 1059-1 (quagga)
2008-01-17 00:00:00
gentoo
gentoo
Quagga Routing Suite: Multiple vulnerabilities
2006-05-21 00:00:00
redhat
redhat
(RHSA-2006:0533) zebra security update
2006-06-01 00:00:00
(RHSA-2006:0525) quagga security update
2006-06-01 00:00:00
debian
debian
[SECURITY] [DSA 1059-1] New quagga packages fix several vulnerabilities
2006-05-19 15:46:52
[SECURITY] [DSA 1059-1] New quagga packages fix several vulnerabilities
2006-05-19 15:46:52
centos
centos
quagga security update
2006-06-01 18:15:40
zebra security update
2006-06-04 23:49:28
debiancve
debiancve
CVE-2006-2276
2006-05-10 02:14:00
CVE-2006-2224
2006-05-05 19:02:00
CVE-2006-2223
2006-05-05 19:02:00
prion
prion
Design/Logic Flaw
2006-05-10 02:14:00
Authentication flaw
2006-05-05 19:02:00
Authentication flaw
2006-05-05 19:02:00
nvd
nvd
CVE-2006-2276
2006-05-10 02:14:00
CVE-2006-2223
2006-05-05 19:02:00
CVE-2006-2224
2006-05-05 19:02:00
ubuntucve
ubuntucve
CVE-2006-2276
2006-05-10 00:00:00
CVE-2006-2224
2006-05-05 00:00:00
CVE-2006-2223
2006-05-05 00:00:00
cvelist
cvelist
CVE-2006-2276
2006-05-09 23:00:00
CVE-2006-2224
2006-05-05 19:00:00
CVE-2006-2223
2006-05-05 19:00:00
cve
cve
CVE-2006-2276
2006-05-10 02:14:00
CVE-2006-2223
2006-05-05 19:02:00
CVE-2006-2224
2006-05-05 19:02:00
exploitdb
exploitdb
Quagga Routing Software Suite 0.9x - RIPd RIPv1 Request Routing Table Disclosure
2006-05-03 00:00:00
Quagga Routing Software Suite 0.9x - RIPd RIPv1 RESPONSE Packet Route Injection
2006-05-03 00:00:00
osv
osv
libfpm_pb0-1.2.4-2.14 on GA media
2024-06-15 00:00:00

EPSS

0.161

Percentile

96.1%

JSON
Related for OSV:DSA-1059-1
nessus10ubuntu1openvas4gentoo1redhat2debian2centos2debiancve3prion3nvd4ubuntucve3cvelist3cve4exploitdb2osv1