Vulnerability DatabaseCVE-2007-4826
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
CVE-2007-4826
September 12, 2007
bgpd in Quagga before 0.99.9 allows explicitly configured BGP peers to cause a denial of service (crash) via a malformed (1) OPEN message or (2) a COMMUNITY attribute, which triggers a NULL pointer dereference. NOTE: vector 2 only exists when debugging is enabled.
Related Resources (21)
http://fedoranews.org/updates/FEDORA-2007-219.shtml
http://www.quagga.net/download/quagga-0.99.9.changelog.txt
http://secunia.com/advisories/29743
http://lists.debian.org/debian-security-announce/debian-security-announce-2007/msg00153.html
http://sunsolve.sun.com/search/document.do?assetkey=1-26-236141-1
http://www.securityfocus.com/bid/25634
http://www.trustix.org/errata/2007/0028/
http://quagga.net/news2.php?y=2007&m=9&d=7#id1189190760
https://people.canonical.com/~ubuntu-security/cve/CVE-2007-4826
http://www.mandriva.com/security/advisories?name=MDKSA-2007:182
http://secunia.com/advisories/26744
http://www.debian.org/security/2007/dsa-1382
http://www.vupen.com/english/advisories/2008/1195/references
http://www.vupen.com/english/advisories/2007/3129
http://secunia.com/advisories/26829
https://access.redhat.com/security/cve/CVE-2007-4826
https://exchange.xforce.ibmcloud.com/vulnerabilities/36551
http://www.redhat.com/support/errata/RHSA-2010-0785.html
http://www.ubuntu.com/usn/usn-512-1
http://secunia.com/advisories/27049
http://secunia.com/advisories/26863
Do you need more information?
Contact Us
CVSS v4
Base Score:
2.3
Attack Vector
NETWORK
Attack Complexity
HIGH
Attack Requirements
NONE
Privileges Required
LOW
User Interaction
NONE
Vulnerable System Confidentiality
NONE
Vulnerable System Integrity
NONE
Vulnerable System Availability
LOW
Subsequent System Confidentiality
NONE
Subsequent System Integrity
NONE
Subsequent System Availability
NONE
CVSS v3
Base Score:
3.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
LOW
CVSS v2
Base Score:
3.5
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
EPSS
Base Score:
1.42