CVE-2012-0250

Published Apr 5, 2012

Last updated 7 years ago

CVSS info 3.3

Overview

Description: Buffer overflow in the OSPFv2 implementation in ospfd in Quagga before 0.99.20.1 allows remote attackers to cause a denial of service (daemon crash) via a Link State Update (aka LS Update) packet containing a network-LSA link-state advertisement for which the data-structure length is smaller than the value in the Length header field.
Source: cret@cert.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 3.3
Impact score: 2.9
Exploitability score: 6.5
Vector string: AV:A/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: CWE-119

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:quagga:quagga:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E5654C0F-5D45-410A-91FA-96C6AE22280E",
            "versionEndIncluding": "0.99.20"
          },
          {
            "criteria": "cpe:2.3:a:quagga:quagga:0.99.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "55FCB7EC-8060-434B-B485-0DC7DBFE117D"
          },
          {
            "criteria": "cpe:2.3:a:quagga:quagga:0.99.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9524E069-2A80-4068-9945-2752EF2126EB"
          },
          {
            "criteria": "cpe:2.3:a:quagga:quagga:0.99.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9E1B30CC-478C-4BD1-AF4C-D126B8CCE8D6"
          },
          {
            "criteria": "cpe:2.3:a:quagga:quagga:0.99.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1D713119-F9C6-4656-92C9-A5B863A4B72F"
          },
          {
            "criteria": "cpe:2.3:a:quagga:quagga:0.99.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1A5E99C8-3778-416B-915F-7335C72435B2"
          },
          {
            "criteria": "cpe:2.3:a:quagga:quagga:0.99.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "578DCE6D-3360-43DA-B22E-E0005A6AF388"
          },
          {
            "criteria": "cpe:2.3:a:quagga:quagga:0.99.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E4D7B93B-0CF5-4CAF-B1F4-8A816A427BC7"
          },
          {
            "criteria": "cpe:2.3:a:quagga:quagga:0.99.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5FDAF214-1851-4DFC-ACAA-37D8CD83D323"
          },
          {
            "criteria": "cpe:2.3:a:quagga:quagga:0.99.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B41BBCA6-237B-4CB6-9208-571D47251E18"
          },
          {
            "criteria": "cpe:2.3:a:quagga:quagga:0.99.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FD6CAB29-56F9-4C54-97D8-CBB338658EB0"
          },
          {
            "criteria": "cpe:2.3:a:quagga:quagga:0.99.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C69C603A-34A1-4EF9-A332-6984928BF72C"
          },
          {
            "criteria": "cpe:2.3:a:quagga:quagga:0.99.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E8814493-75B4-45DD-886B-054A1C27F870"
          },
          {
            "criteria": "cpe:2.3:a:quagga:quagga:0.99.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E98DCCDE-2800-4FC5-BE49-3EC7583F9768"
          },
          {
            "criteria": "cpe:2.3:a:quagga:quagga:0.99.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EF2C126C-075D-42F0-B9DD-95267D14C818"
          },
          {
            "criteria": "cpe:2.3:a:quagga:quagga:0.99.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "62379505-A869-48AA-8A32-768583F12266"
          },
          {
            "criteria": "cpe:2.3:a:quagga:quagga:0.99.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "737C92B8-185F-4049-A7F4-D9D4DA6DDFDC"
          },
          {
            "criteria": "cpe:2.3:a:quagga:quagga:0.99.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1FF1EAD6-1BAF-4D5E-BEB1-BC433041482D"
          },
          {
            "criteria": "cpe:2.3:a:quagga:quagga:0.99.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B344123D-1D1D-41B0-BEF5-D3A5A4995B79"
          },
          {
            "criteria": "cpe:2.3:a:quagga:quagga:0.99.19:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "809D464E-8F60-44E3-8BEB-97760500B508"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References