Lucene search
Redhat.comRH:CVE-2017-3224HistoryJul 28, 2017 - 1:48 a.m.
CVE-2017-3224
2017-07-2801:48:37
redhat.com
access.redhat.com
7
0.001 Low
EPSS
Percentile
33.1%
A vulnerability was discovered in several OSPF implementations, including Quagga. A malicious OSPF peer, or an attacker able to spoof messages from an OSPF peer, could send a crafted message that would result in erasure or alteration of the routing table, resulting in denial of service or incorrect routing of traffic.
Mitigation
It is strongly recommended to configure Quagga to require authentication from OSPF peers (eg ip ospf authentication message-digest ). Message digest authentication effectively prevents even a man-in-the-middle attacker from exploiting this vulnerability or otherwise interfering with the routing table, as any message without a proper cryptographic signature will be rejected.
Related
debiancve
debiancve
CVE-2017-3224
2018-07-24 15:29:00
ubuntucve
ubuntucve
CVE-2017-3224
2018-07-24 00:00:00
prion
prion
Design/Logic Flaw
2018-07-24 15:29:00
cve
cve
CVE-2017-3224
2018-07-24 15:29:00
cvelist
cvelist
nvd
nvd
CVE-2017-3224
2018-07-24 15:29:00
nessus
nessus
EulerOS 2.0 SP5 : quagga (EulerOS-SA-2021-1227)
2021-02-04 00:00:00
RHEL 6 : quagga (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 6 : quagga (Unpatched Vulnerability)
2024-06-03 00:00:00
cert
cert
openvas
openvas
Huawei EulerOS: Security Advisory for quagga (EulerOS-SA-2021-1227)
2021-02-05 00:00:00
Huawei EulerOS: Security Advisory for quagga (EulerOS-SA-2019-2408)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for quagga (EulerOS-SA-2019-2657)
2020-01-23 00:00:00