Quagga BGPD UPDATE Message Remote Denial Of Service Vulnerability

Quagga BGPD UPDATE Message Remote Denial Of Service Vulnerability

Quagga is prone to a remote denial-of-service vulnerability because it fails to handle a malformed multi-protocol message.

A remote attacker can exploit this issue by submitting a maliciously crafted message to the application.

Successful exploits will cause the Quagga 'bgpd' daemon to abort, denying further service to legitimate users.

Quagga 0.99.6 and prior versions (0.99 branch) as well as 0.98.6 and prior versions (0.98 branch) are vulnerable.