CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 2CVE-2006-2276
https://notcve.org/view.php?id=CVE-2006-2276
09 May 2006 — bgpd in Quagga 0.98 and 0.99 before 20060504 allows local users to cause a denial of service (CPU consumption) via a certain sh ip bgp command entered in the telnet interface. • ftp://patches.sgi.com/support/free/security/advisories/20060602-01-U.asc • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 13%CPEs: 2EXPL: 2CVE-2006-2223 – Quagga Routing Software Suite 0.9x - RIPd RIPv1 Request Routing Table Disclosure
https://notcve.org/view.php?id=CVE-2006-2223
05 May 2006 — RIPd in Quagga 0.98 and 0.99 before 20060503 does not properly implement configurations that (1) disable RIPv1 or (2) require plaintext or MD5 authentication, which allows remote attackers to obtain sensitive information (routing state) via REQUEST packets such as SEND UPDATE. RIPd en Quagga 0.98 y 0.99 anteriores a 20060503 no implementa adecuadamente configuraciones que (1) deshabiliten RIPv1 o (2) necesiten autenticación MD5 o en texto plano, lo que permite a atacantes remotos obtener información sensibl... • https://www.exploit-db.com/exploits/27801 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 19%CPEs: 5EXPL: 2CVE-2006-2224 – Quagga Routing Software Suite 0.9x - RIPd RIPv1 RESPONSE Packet Route Injection
https://notcve.org/view.php?id=CVE-2006-2224
05 May 2006 — RIPd in Quagga 0.98 and 0.99 before 20060503 does not properly enforce RIPv2 authentication requirements, which allows remote attackers to modify routing state via RIPv1 RESPONSE packets. RIPd en Quagga 0.98 y 0.99 anteriores a 20060503 no imponen adecuadamente los requerimientos de autenticación de de RIPv2, lo que permite a atacantes remotos modificar el estado de encaminamiento mediante paquetes RIPv1 "RESPONSE". • https://www.exploit-db.com/exploits/27802 • CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 8%CPEs: 11EXPL: 1CVE-2003-0795 – GNU Zebra 0.9x / Quagga 0.96 - Remote Denial of Service
https://notcve.org/view.php?id=CVE-2003-0795
18 Nov 2003 — The vty layer in Quagga before 0.96.4, and Zebra 0.93b and earlier, does not verify that sub-negotiation is taking place when processing the SE marker, which allows remote attackers to cause a denial of service (crash) via a malformed telnet command to the telnet CLI port, which may trigger a null dereference. La capa vty en Quagga anteriores a 0.96.4, y Zebra anteriores a 0.91, no verifica si se está llevando a cabo una sub-negociación cuando procesa el marcador SE, lo que permite a atacantes remotos causa... • https://www.exploit-db.com/exploits/23375 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2003-0858
https://notcve.org/view.php?id=CVE-2003-0858
18 Nov 2003 — Zebra 0.93b and earlier, and quagga before 0.95, allows local users to cause a denial of service by sending spoofed messages as other users to the kernel netlink interface. Zebra anteriores a 0.91 y quagga anteriores a 0.95 permite a usuarios locales causar una denegación de servicio enviando mensajes suplantando a otros usuarios al interfaz del kernel netlink. • http://secunia.com/advisories/10563 • CWE-399: Resource Management Errors •
CVSS: 5.5EPSS: 0%CPEs: 18EXPL: 0CVE-2003-0859
https://notcve.org/view.php?id=CVE-2003-0859
18 Nov 2003 — The getifaddrs function in GNU libc (glibc) 2.2.4 and earlier allows local users to cause a denial of service by sending spoofed messages as other users to the kernel netlink interface. La función getifaddres en GNU libc (glibc) 2.2.4 y anteriores permite a usuarios locales causar una denegación de servicio enviando mensajes suplantando a otros usuarios al interfaz del kernel netlink. • http://www.redhat.com/support/errata/RHSA-2003-325.html •