Max CVSS | 7.8 | Min CVSS | 2.9 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2010-2949 | 5.0 |
bgpd in Quagga before 0.99.17 does not properly parse AS paths, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an unknown AS type in an AS path attribute in a BGP UPDATE message.
|
13-02-2023 - 04:21 | 10-09-2010 - 19:00 | |
CVE-2018-5379 | 7.5 |
The Quagga BGP daemon (bgpd) prior to version 1.2.3 can double-free memory when processing certain forms of UPDATE message, containing cluster-list and/or unknown attributes. A successful attack could cause a denial of service or potentially allow an
|
09-10-2019 - 23:41 | 19-02-2018 - 13:29 | |
CVE-2010-1675 | 5.0 |
bgpd in Quagga before 0.99.18 allows remote attackers to cause a denial of service (session reset) via a malformed AS_PATHLIMIT path attribute.
|
06-01-2018 - 02:29 | 29-03-2011 - 18:55 | |
CVE-2017-5495 | 7.8 |
All versions of Quagga, 0.93 through 1.1.0, are vulnerable to an unbounded memory allocation in the telnet 'vty' CLI, leading to a Denial-of-Service of Quagga daemons, or even the entire host. When Quagga daemons are configured with their telnet CLI
|
05-01-2018 - 02:31 | 24-01-2017 - 07:59 | |
CVE-2012-1820 | 2.9 |
The bgp_capability_orf function in bgpd in Quagga 0.99.20.1 and earlier allows remote attackers to cause a denial of service (assertion failure and daemon exit) by leveraging a BGP peering relationship and sending a malformed Outbound Route Filtering
|
02-03-2013 - 04:40 | 13-06-2012 - 15:55 |