Improper Handling of Syntactically Invalid Structure

CVE-2018-5381

Medium

6.5/10

Summary

The Quagga BGP daemon (bgpd) prior to version 1.2.3 has a bug in its parsing of "Capabilities" in BGP OPEN messages, in the bgp_packet.c:bgp_capability_msg_parse function. The parser can enter an infinite loop on invalid capabilities if a Multi-Protocol capability does not have a recognized AFI/SAFI, causing a denial of service.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: LOW
Confidentiality Impact: NONE
Availability Impact: HIGH

CWE-228 - Improper Handling of Syntactically Invalid Structure

The product does not handle or incorrectly handles input that is not syntactically well-formed with respect to the associated specification.

References

Advisory Timeline

Published Feb 19, 2018

Improper Handling of Syntactically Invalid Structure

CVE-2018-5381

Summary

CWE-228 - Improper Handling of Syntactically Invalid Structure

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS