CVE-2003-0795 – GNU Zebra 0.9x / Quagga 0.96 - Remote Denial of Service

https://notcve.org/view.php?id=CVE-2003-0795

18 Nov 2003 — The vty layer in Quagga before 0.96.4, and Zebra 0.93b and earlier, does not verify that sub-negotiation is taking place when processing the SE marker, which allows remote attackers to cause a denial of service (crash) via a malformed telnet command to the telnet CLI port, which may trigger a null dereference. La capa vty en Quagga anteriores a 0.96.4, y Zebra anteriores a 0.91, no verifica si se está llevando a cabo una sub-negociación cuando procesa el marcador SE, lo que permite a atacantes remotos causa... • https://www.exploit-db.com/exploits/23375 • CWE-20: Improper Input Validation •