CVE-2006-2224

Published: May 5, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

RIPd in Quagga 0.98 and 0.99 before 20060503 does not properly enforce RIPv2 authentication requirements, which allows remote attackers to modify routing state via RIPv1 RESPONSE packets.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

SUSE-SR:2006:017

vendor-advisory

x_refsource_SUSE

USN-284-1

vendor-advisory

x_refsource_UBUNTU

quagga-ripd-ripv1-response-security-bypass(26251)

vdb-entry

x_refsource_XF

20782

third-party-advisory

x_refsource_SECUNIA

oval:org.mitre.oval:def:10775

vdb-entry

signature

x_refsource_OVAL

20138

third-party-advisory

x_refsource_SECUNIA

20060503 Re: Quagga RIPD unauthenticated route injection

mailing-list

x_refsource_BUGTRAQ

20421

third-party-advisory

x_refsource_SECUNIA

RHSA-2006:0525

vendor-advisory

x_refsource_REDHAT

25225

vdb-entry

x_refsource_OSVDB

20137

third-party-advisory

x_refsource_SECUNIA

1016204

vdb-entry

x_refsource_SECTRACK

19910

third-party-advisory

x_refsource_SECUNIA

17808

vdb-entry

x_refsource_BID

RHSA-2006:0533

vendor-advisory

x_refsource_REDHAT

GLSA-200605-15

vendor-advisory

x_refsource_GENTOO

21159

third-party-advisory

x_refsource_SECUNIA

20060503 Quagga RIPD unauthenticated route injection

mailing-list

x_refsource_BUGTRAQ

http://bugzilla.quagga.net/show_bug.cgi?id=262

x_refsource_CONFIRM

DSA-1059

vendor-advisory

x_refsource_DEBIAN

20221

third-party-advisory

x_refsource_SECUNIA

20420

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2006-2224

Description

Affected Products

References