Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2006:0525
HistoryJun 01, 2006 - 12:00 a.m.

(RHSA-2006:0525) quagga security update

2006-06-0100:00:00
access.redhat.com
10

EPSS

0.161

Percentile

96.1%

JSON

Quagga manages the TCP/IP based routing protocol. It takes a multi-server
and multi-thread approach to resolve the current complexity of the Internet.

An information disclosure flaw was found in the way Quagga interprets RIP
REQUEST packets. RIPd in Quagga will respond to RIP REQUEST packets for RIP
versions that have been disabled or that have authentication enabled,
allowing a remote attacker to acquire information about the local network.
(CVE-2006-2223)

A route injection flaw was found in the way Quagga interprets RIPv1
RESPONSE packets when RIPv2 authentication is enabled. It is possible for a
remote attacker to inject arbitrary route information into the RIPd routing
tables. This issue does not affect Quagga configurations where only RIPv2
is specified. (CVE-2006-2224)

A denial of service flaw was found in Quagga’s telnet interface. If an
attacker is able to connect to the Quagga telnet interface, it is possible
to cause Quagga to consume vast quantities of CPU resources by issuing a
malformed ‘sh’ command. (CVE-2006-2276)

Users of Quagga should upgrade to these updated packages, which contain
backported patches that correct these issues.

Related

nessus 10
openvas 4
ubuntu 1
centos 2
osv 2
debian 2
gentoo 1
redhat 1
debiancve 3
prion 3
nvd 4
ubuntucve 3
cvelist 3
cve 4
exploitdb 2
nessus
nessus
Debian DSA-1059-1 : quagga - several vulnerabilities
2006-10-14 00:00:00
CentOS 3 / 4 : quagga (CESA-2006:0525)
2006-07-03 00:00:00
RHEL 3 / 4 : quagga (RHSA-2006:0525)
2006-06-05 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200605-15 (quagga)
2008-09-24 00:00:00
Debian: Security Advisory (DSA-1059-1)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200605-15 (quagga)
2008-09-24 00:00:00
ubuntu
ubuntu
Quagga vulnerabilities
2006-05-16 00:00:00
centos
centos
quagga security update
2006-06-01 18:15:40
zebra security update
2006-06-04 23:49:28
osv
osv
quagga - several
2006-05-19 00:00:00
libfpm_pb0-1.2.4-2.14 on GA media
2024-06-15 00:00:00
debian
debian
[SECURITY] [DSA 1059-1] New quagga packages fix several vulnerabilities
2006-05-19 15:46:52
[SECURITY] [DSA 1059-1] New quagga packages fix several vulnerabilities
2006-05-19 15:46:52
gentoo
gentoo
Quagga Routing Suite: Multiple vulnerabilities
2006-05-21 00:00:00
redhat
redhat
(RHSA-2006:0533) zebra security update
2006-06-01 00:00:00
debiancve
debiancve
CVE-2006-2276
2006-05-10 02:14:00
CVE-2006-2223
2006-05-05 19:02:00
CVE-2006-2224
2006-05-05 19:02:00
prion
prion
Design/Logic Flaw
2006-05-10 02:14:00
Authentication flaw
2006-05-05 19:02:00
Authentication flaw
2006-05-05 19:02:00
nvd
nvd
CVE-2006-2276
2006-05-10 02:14:00
CVE-2006-2223
2006-05-05 19:02:00
CVE-2006-2224
2006-05-05 19:02:00
ubuntucve
ubuntucve
CVE-2006-2276
2006-05-10 00:00:00
CVE-2006-2224
2006-05-05 00:00:00
CVE-2006-2223
2006-05-05 00:00:00
cvelist
cvelist
CVE-2006-2276
2006-05-09 23:00:00
CVE-2006-2223
2006-05-05 19:00:00
CVE-2006-2224
2006-05-05 19:00:00
cve
cve
CVE-2006-2276
2006-05-10 02:14:00
CVE-2006-2223
2006-05-05 19:02:00
CVE-2006-2224
2006-05-05 19:02:00
exploitdb
exploitdb
Quagga Routing Software Suite 0.9x - RIPd RIPv1 RESPONSE Packet Route Injection
2006-05-03 00:00:00
Quagga Routing Software Suite 0.9x - RIPd RIPv1 Request Routing Table Disclosure
2006-05-03 00:00:00

EPSS

0.161

Percentile

96.1%

JSON
Related for RHSA-2006:0525
nessus10openvas4ubuntu1centos2osv2debian2gentoo1redhat1debiancve3prion3nvd4ubuntucve3cvelist3cve4exploitdb2