Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2007-4826

bgpd in Quagga before 0.99.9 allows explicitly configured BGP peers to cause a denial of service (crash) via a malformed (1) OPEN message or (2) a COMMUNITY attribute, which triggers a NULL pointer dereference. NOTE: vector 2 only exists when debugging is enabled.

  • Published: Sep 12, 2007
  • Updated: Apr 13, 2023
  • CVE: CVE-2007-4826
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 3.5
  • AV:N/AC:M/Au:S/C:N/I:N/A:P

No CWE or OWASP classifications available.

Software From Fixed in
quagga / quagga 0.99.2 0.99.2.x
quagga / quagga 0.97.5 0.97.5.x
quagga / quagga 0.95 0.95.x
quagga / quagga 0.98.3 0.98.3.x
quagga / quagga 0.96.3 0.96.3.x
quagga / quagga 0.99.4 0.99.4.x
quagga / quagga 0.99.7 0.99.7.x
quagga / quagga 0.99.5 0.99.5.x
quagga / quagga 0.96.5 0.96.5.x
quagga / quagga 0.98.0 0.98.0.x
quagga / quagga 0.96.1 0.96.1.x
quagga / quagga 0.98.1 0.98.1.x
quagga / quagga 0.96.4 0.96.4.x
quagga / quagga 0.98.5 0.98.5.x
quagga / quagga 0.97.3 0.97.3.x
quagga / quagga 0.99.3 0.99.3.x
quagga / quagga - 0.99.8.x
quagga / quagga 0.99.6 0.99.6.x
quagga / quagga 0.98.6 0.98.6.x
quagga / quagga 0.97.4 0.97.4.x
quagga / quagga 0.98.4 0.98.4.x
quagga / quagga 0.98.2 0.98.2.x
quagga / quagga 0.97.1 0.97.1.x
quagga / quagga 0.97.0 0.97.0.x
quagga / quagga 0.96.2 0.96.2.x
quagga / quagga 0.99.1 0.99.1.x
quagga / quagga 0.97.2 0.97.2.x
quagga / quagga 0.96 0.96.x