CVE-2007-4826 - Secunia Advisories - Vulnerability Intelligence - Secunia.com

Vulnerability Intelligence

Vulnerability Scanning

Community - new!

Blog - new entry!

Corporate Information

Secunia Advisories

Secunia Research

Binary Analysis

Home > Vulnerability Intelligence > Secunia Advisories > CVE-2007-4826

Secunia Advisories

Advisories by Product

Advisories by Vendor

Historic Advisories

Mailing Lists & RSS

Report Vulnerability

Business Solutions Restricted

Restricted

Partner Solutions Restricted

Restricted

CVE Reference: CVE-2007-4826
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-4826

Description: bgpd in Quagga before 0.99.9 allows explicitly configured BGP peers to cause a denial of service (crash) via a malformed (1) OPEN message or (2) a COMMUNITY attribute, which triggers a NULL pointer dereference. NOTE: vector 2 only exists when debugging is enabled.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/36551 UBUNTU http://www.ubuntu.com/usn/usn-512-1 TRUSTIX http://www.trustix.org/errata/2007/0028/ SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-236141-1 SAID Secunia Advisory: SA26744 Secunia Advisory: SA26829 Secunia Advisory: SA26863 Secunia Advisory: SA27049 Secunia Advisory: SA29743 MLIST http://lists.debian.org/debian-security-announce/debian-security-announce-2007/msg00153.html MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:182 FEDORA http://fedoranews.org/updates/FEDORA-2007-219.shtml DEBIAN http://www.debian.org/security/2007/dsa-1382 CONFIRM http://quagga.net/news2.php?y=2007&m=9&d=7#id1189190760 http://www.quagga.net/download/quagga-0.99.9.changelog.txt BID 25634

Return to the previous page.

Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs | About Secunia
Copyright Secunia 2002-2008