CVE-2007-1995
Gravedad CVSS v2.0:
MEDIA
Tipo:
CWE-20
Validación incorrecta de entrada
Fecha de publicación:
12/04/2007
Última modificación:
09/04/2025
Descripción
bgpd/bgp_attr.c en Quagga 0.98.6 y versiones anteriores, y 0.99.6 y versiones 0.99 anteriores, no validan la longitud de los valores en los atributos MP_REACH_NLRI y MP_UNREACH_NLRI, lo cual permite a atacantes remotos provocar una denegación de servicio (caída o finalización de demonio) mediante mensajes UPDATE manipulados que disparan un error de aserción o lectura fuera de límites.
Impacto
Puntuación base 2.0
6.30
Gravedad 2.0
MEDIA
Productos y versiones vulnerables
| CPE | Desde | Hasta |
|---|---|---|
| cpe:2.3:a:quagga:quagga:*:*:*:*:*:*:*:* | 0.98.6 (incluyendo) | |
| cpe:2.3:a:quagga:quagga:0.95:*:*:*:*:*:*:* | ||
| cpe:2.3:a:quagga:quagga:0.96:*:*:*:*:*:*:* | ||
| cpe:2.3:a:quagga:quagga:0.96.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:quagga:quagga:0.96.2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:quagga:quagga:0.96.3:*:*:*:*:*:*:* | ||
| cpe:2.3:a:quagga:quagga:0.96.4:*:*:*:*:*:*:* | ||
| cpe:2.3:a:quagga:quagga:0.96.5:*:*:*:*:*:*:* | ||
| cpe:2.3:a:quagga:quagga:0.97.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:quagga:quagga:0.97.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:quagga:quagga:0.97.2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:quagga:quagga:0.97.3:*:*:*:*:*:*:* | ||
| cpe:2.3:a:quagga:quagga:0.97.4:*:*:*:*:*:*:* | ||
| cpe:2.3:a:quagga:quagga:0.97.5:*:*:*:*:*:*:* | ||
| cpe:2.3:a:quagga:quagga:0.98.0:*:*:*:*:*:*:* |
Para consultar la lista completa de nombres de CPE con productos y versiones, ver esta página
Referencias a soluciones, herramientas e información
- http://bugzilla.quagga.net/show_bug.cgi?id=354
- http://bugzilla.quagga.net/show_bug.cgi?id=355
- http://secunia.com/advisories/24808
- http://secunia.com/advisories/25084
- http://secunia.com/advisories/25119
- http://secunia.com/advisories/25255
- http://secunia.com/advisories/25293
- http://secunia.com/advisories/25312
- http://secunia.com/advisories/25428
- http://secunia.com/advisories/29743
- http://security.gentoo.org/glsa/glsa-200705-05.xml
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-236141-1
- http://www.debian.org/security/2007/dsa-1293
- http://www.mandriva.com/security/advisories?name=MDKSA-2007%3A096
- http://www.novell.com/linux/security/advisories/2007_9_sr.html
- http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.015.html
- http://www.quagga.net/news2.php?y=2007&m=4&d=8#id1176073740
- http://www.redhat.com/support/errata/RHSA-2007-0389.html
- http://www.securityfocus.com/bid/23417
- http://www.securitytracker.com/id?1018142=
- http://www.trustix.org/errata/2007/0017/
- http://www.ubuntu.com/usn/usn-461-1
- http://www.vupen.com/english/advisories/2007/1336
- http://www.vupen.com/english/advisories/2008/1195/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33547
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11048
- http://bugzilla.quagga.net/show_bug.cgi?id=354
- http://bugzilla.quagga.net/show_bug.cgi?id=355
- http://secunia.com/advisories/24808
- http://secunia.com/advisories/25084
- http://secunia.com/advisories/25119
- http://secunia.com/advisories/25255
- http://secunia.com/advisories/25293
- http://secunia.com/advisories/25312
- http://secunia.com/advisories/25428
- http://secunia.com/advisories/29743
- http://security.gentoo.org/glsa/glsa-200705-05.xml
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-236141-1
- http://www.debian.org/security/2007/dsa-1293
- http://www.mandriva.com/security/advisories?name=MDKSA-2007%3A096
- http://www.novell.com/linux/security/advisories/2007_9_sr.html
- http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.015.html
- http://www.quagga.net/news2.php?y=2007&m=4&d=8#id1176073740
- http://www.redhat.com/support/errata/RHSA-2007-0389.html
- http://www.securityfocus.com/bid/23417
- http://www.securitytracker.com/id?1018142=
- http://www.trustix.org/errata/2007/0017/
- http://www.ubuntu.com/usn/usn-461-1
- http://www.vupen.com/english/advisories/2007/1336
- http://www.vupen.com/english/advisories/2008/1195/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33547
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11048