Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2010-2948

Overview

Vulnerability Score 6.5 6.5
CVE Id CVE-2010-2948
Last Modified 18 Jan 2012 10:50:28
Published 10 Sep 2010 03:00:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2010-2948

Summary

Stack-based buffer overflow in the bgp_route_refresh_receive function in bgp_packet.c in bgpd in Quagga before 0.99.17 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a malformed Outbound Route Filtering (ORF) record in a BGP ROUTE-REFRESH (RR) message.

Vulnerable Systems

Application

  • Quagga 0.95

  • Quagga 0.96

  • Quagga 0.96.1

  • Quagga 0.96.2

  • Quagga 0.96.3

  • Quagga 0.96.4

  • Quagga 0.96.5

  • Quagga 0.97.0

  • Quagga 0.97.1

  • Quagga 0.97.2

  • Quagga 0.97.3

  • Quagga 0.97.4

  • Quagga 0.97.5

  • Quagga 0.98.0

  • Quagga 0.98.1

  • Quagga 0.98.2

  • Quagga 0.98.3

  • Quagga 0.98.4

  • Quagga 0.98.5

  • Quagga 0.98.6

  • Quagga 0.99.1

  • Quagga 0.99.10

  • Quagga 0.99.11

  • Quagga 0.99.12

  • Quagga 0.99.13

  • Quagga 0.99.14

  • Quagga 0.99.15

  • Quagga 0.99.16

  • Quagga 0.99.2

  • Quagga 0.99.3

  • Quagga 0.99.4

  • Quagga 0.99.5

  • Quagga 0.99.6

  • Quagga 0.99.7

  • Quagga 0.99.8

  • Quagga 0.99.9


References

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=626783

VUPEN - ADV-2010-3124

VUPEN - ADV-2010-3097

VUPEN - ADV-2010-2304

UBUNTU - USN-1027-1

BID - 42635

REDHAT - RHSA-2010:0945

REDHAT - RHSA-2010:0785

CONFIRM - http://www.quagga.net/news2.php?y=2010&m=8&d=19

MLIST - [oss-security] 20100825 Re: CVE Request -- Quagga (bgpd) [two ids] -- 1, Stack buffer overflow by processing crafted Refresh-Route msgs 2, NULL ptr deref by parsing certain AS paths by BGP update request

MLIST - [oss-security] 20100824 CVE Request -- Quagga (bgpd) [two ids] -- 1, Stack buffer overflow by processing crafted Refresh-Route msgs 2, NULL ptr deref by parsing certain AS paths by BGP update request

MANDRIVA - MDVSA-2010:174

DEBIAN - DSA-2104

SECUNIA - 42498

SECUNIA - 42446

SECUNIA - 42397

SECUNIA - 41238

SECUNIA - 41038

SUSE - SUSE-SR:2010:022

CONFIRM - http://code.quagga.net/?p=quagga.git;a=commit;h=d64379e8f3c0636df53ed08d5b2f1946cfedd0e3

SUSE - SUSE-SU-2011:1316


Last Updated: 27 May 2016 10:57:20