Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The aspath_put function in bgpd/bgp_aspath.c in Quagga before 1.2.2 allows remote attackers to cause a denial of service (session drop) via BGP UPDATE messages, because AS_PATH size calculation for long paths counts certain bytes twice and consequently constructs an invalid message.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Quagga 安全漏洞
Vulnerability Description
Quagga是美国软件开发者Kunihiro Ishiguro所研发的一款路由软件套件。该套件可在多种平台上实现OSPFv2、OSPFv3、RIP v1/v2等协议,并提供路由重分布、路由映射等功能。 Quagga 1.2.2之前的版本中的bgpd/bgp_aspath.c文件的‘aspath_put’函数存在安全漏洞。远程攻击者可借助BGP UPDATE消息利用该漏洞造成拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A