Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Quagga
(Quagga)| Repositories | https://github.com/Quagga/quagga |
| #Vulnerabilities | 33 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2006-05-10 | CVE-2006-2276 | bgpd in Quagga 0.98 and 0.99 before 20060504 allows local users to cause a denial of service (CPU consumption) via a certain sh ip bgp command entered in the telnet interface. | Quagga | N/A | ||
| 2006-05-05 | CVE-2006-2223 | RIPd in Quagga 0.98 and 0.99 before 20060503 does not properly implement configurations that (1) disable RIPv1 or (2) require plaintext or MD5 authentication, which allows remote attackers to obtain sensitive information (routing state) via REQUEST packets such as SEND UPDATE. | Quagga | N/A | ||
| 2003-12-15 | CVE-2003-0795 | The vty layer in Quagga before 0.96.4, and Zebra 0.93b and earlier, does not verify that sub-negotiation is taking place when processing the SE marker, which allows remote attackers to cause a denial of service (crash) via a malformed telnet command to the telnet CLI port, which may trigger a null dereference. | Zebra, Quagga, Propack | N/A |