Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2013-2236

Stack-based buffer overflow in the new_msg_lsa_change_notify function in the OSPFD API (ospf_api.c) in Quagga before 0.99.22.2, when --enable-opaque-lsa and the -a command line option are used, allows remote attackers to cause a denial of service (crash) via a large LSA.

  • Published: Oct 24, 2013
  • Updated: Apr 13, 2023
  • CVE: CVE-2013-2236
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 2.6
  • AV:N/AC:H/Au:N/C:N/I:N/A:P

CWEs:

Software From Fixed in
quagga / quagga - 0.99.22.1.x
quagga / quagga 0.99.22 0.99.22.x