5

CVE-2010-1674

The extended-community parser in bgpd in Quagga before 0.99.18 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a malformed Extended Communities attribute.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
QuaggaQuagga Version <= 0.99.17
QuaggaQuagga Version0.95
QuaggaQuagga Version0.96
QuaggaQuagga Version0.96.1
QuaggaQuagga Version0.96.2
QuaggaQuagga Version0.96.3
QuaggaQuagga Version0.96.4
QuaggaQuagga Version0.96.5
QuaggaQuagga Version0.97.0
QuaggaQuagga Version0.97.1
QuaggaQuagga Version0.97.2
QuaggaQuagga Version0.97.3
QuaggaQuagga Version0.97.4
QuaggaQuagga Version0.97.5
QuaggaQuagga Version0.98.0
QuaggaQuagga Version0.98.1
QuaggaQuagga Version0.98.2
QuaggaQuagga Version0.98.3
QuaggaQuagga Version0.98.4
QuaggaQuagga Version0.98.5
QuaggaQuagga Version0.98.6
QuaggaQuagga Version0.99.1
QuaggaQuagga Version0.99.2
QuaggaQuagga Version0.99.3
QuaggaQuagga Version0.99.4
QuaggaQuagga Version0.99.5
QuaggaQuagga Version0.99.6
QuaggaQuagga Version0.99.7
QuaggaQuagga Version0.99.8
QuaggaQuagga Version0.99.9
QuaggaQuagga Version0.99.10
QuaggaQuagga Version0.99.11
QuaggaQuagga Version0.99.12
QuaggaQuagga Version0.99.13
QuaggaQuagga Version0.99.14
QuaggaQuagga Version0.99.15
QuaggaQuagga Version0.99.16
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 13.43% 0.959
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00009.html
http://secunia.com/advisories/48106
http://security.gentoo.org/glsa/glsa-201202-02.xml
http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
http://rhn.redhat.com/errata/RHSA-2012-1258.html
http://secunia.com/advisories/43499
Vendor Advisory
http://secunia.com/advisories/43770
Vendor Advisory
http://www.debian.org/security/2011/dsa-2197
http://www.mandriva.com/security/advisories?name=MDVSA-2011:058
http://www.osvdb.org/71259
http://www.quagga.net/news2.php?y=2011&m=3&d=21#id1300723200
http://www.securityfocus.com/bid/46942
http://www.vupen.com/english/advisories/2011/0711
Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=654603
https://exchange.xforce.ibmcloud.com/vulnerabilities/66211