CVE-2007-1995

Name of the Vulnerable Software and Affected Versions: Quagga versions 0.98.6 and earlier Quagga versions 0.99.6 and earlier

Description: The issue allows remote attackers to cause a denial of service, potentially leading to a daemon crash or exit, by sending crafted UPDATE messages that trigger an assertion error or out of bounds read. This is due to the lack of validation of length values in the MP REACH NLRI and MP UNREACH NLRI attributes. The vulnerability can be exploited remotely by an attacker who has passed the authentication procedure, leading to a disruption of protected information availability.

Recommendations: For Quagga versions 0.98.6 and earlier: update to a version later than 0.98.6 to resolve the issue. For Quagga versions 0.99.6 and earlier: update to a version later than 0.99.6 to resolve the issue. As a temporary workaround, consider restricting access to the bgpd/bgp attr.c module until a patch is available.