CVE-2016-2342 in Quaggaजानकारी

सारांश

द्वारा MITRE

The bgp_nlri_parse_vpnv4 function in bgp_mplsvpn.c in the VPNv4 NLRI parser in bgpd in Quagga before 1.0.20160309, when a certain VPNv4 configuration is used, relies on a Labeled-VPN SAFI routes-data length field during a data copy, which allows remote attackers to execute arbitrary code or cause a denial of service (stack-based buffer overflow) via a crafted packet.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

आरक्षित करना

12/02/2016

प्रकटीकरण

17/03/2016

प्रविष्टि

VDB-81381

EPSS

0.12110

गतिविधियाँ

बहुत कम

क्षेत्र

Agriculture, Government, ...

स्रोत

Do you need the next level of professionalism?

Upgrade your account now!