5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.017 Low
EPSS
Percentile
87.7%
RIPd in Quagga 0.98 and 0.99 before 20060503 does not properly implement
configurations that (1) disable RIPv1 or (2) require plaintext or MD5
authentication, which allows remote attackers to obtain sensitive
information (routing state) via REQUEST packets such as SEND UPDATE.