CVE-2007-4826
Published: 12 September 2007
bgpd in Quagga before 0.99.9 allows explicitly configured BGP peers to cause a denial of service (crash) via a malformed (1) OPEN message or (2) a COMMUNITY attribute, which triggers a NULL pointer dereference. NOTE: vector 2 only exists when debugging is enabled.
Notes
Author | Note |
---|---|
kees | only vulnerable to configured upstream peers |