#VU10617 Out-of-bounds read in Quagga - CVE-2018-5380


Vulnerability identifier: #VU10617

Vulnerability risk: Low

CVSSv4.0: 6.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2018-5380

CWE-ID: CWE-125

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Quagga
Server applications / Other server solutions

Vendor: quagga.net

Description
The vulnerability allows a remote attacker to obtain potentially sensitive information or cause DoS condition on the target system.

The weakness exists in the Quagga BGP daemon due to out-of-bounds read. A remote attacker send a specially crafted input, overrun internal BGP code-to-string conversion tables used for debug by 1 pointer value and read arbitrary data or cause a denial of service.

Mitigation
Update to version 1.2.3.

Vulnerable software versions

Quagga: 1.0.20160309 - 1.2.2

External links
https://savannah.nongnu.org/forum/forum.php?forum_id=9095

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


SUSE update for quagga
Gentoo update for Quagga
Amazon Linux AMI update for quagga
OpenSUSE Linux update for quagga
Multiple vulnerabilities in Quagga
Debian update for quagga
Ubuntu update for Quagga
SUSE Linux update for quagga
SUSE Linux update for quagga
SUSE Linux update for quagga