Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Quagga BGP daemon (bgpd) prior to version 1.2.3 does not properly bounds check the data sent with a NOTIFY to a peer, if an attribute length is invalid. Arbitrary data from the bgpd process may be sent over the network to a peer and/or bgpd may crash.
CVSS Information
N/A
Vulnerability Type
内存缓冲区边界内操作的限制不恰当
Vulnerability Title
Quagga BGP daemon 缓冲区错误漏洞
Vulnerability Description
Quagga BGP daemon(bgpd)是一系列守护进程(daemon)的集合,由核心守护进程zebra进行管理,主要用于实现与运行相同路由协议的对等节点之间进行路由信息交换。bgpd是其中的一个实现BGP4+(包括对组播地址族和IPv6地址族的支持)的守护进程(daemon)。 Quagga bgpd 1.2.3之前版本中存在缓冲区错误漏洞,该漏洞源于程序没有正确的对数据执行边界检测。远程攻击者可利用该漏洞读取bgpd进程的内存或造成bgpd崩溃。
CVSS Information
N/A
Vulnerability Type
N/A