CVE-2013-2236 : Stack-based buffer overflow in the new_msg_lsa_change

Stack-based buffer overflow in the new_msg_lsa_change_notify function in the OSPFD API (ospf_api.c) in Quagga before 0.99.22.2, when --enable-opaque-lsa and the -a command line option are used, allows remote attackers to cause a denial of service (crash) via a large LSA.

Published 2013-10-24 03:48:46

Updated 2018-01-05 02:29:33

Source Red Hat, Inc.

View at NVD, CVE.org

Vulnerability category: OverflowDenial of service

Products affected by CVE-2013-2236

Quagga » Quagga
Versions up to, including, (<=) 0.99.22.1
cpe:2.3:a:quagga:quagga:*:*:*:*:*:*:*:*
Matching versions
Quagga » Quagga » Version: 0.99.22
cpe:2.3:a:quagga:quagga:0.99.22:*:*:*:*:*:*:*
Matching versions

Threat overview for CVE-2013-2236

Top countries where our scanners detected CVE-2013-2236

Top open port discovered on systems with this issue 2601

IPs affected by CVE-2013-2236 8,940

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2013-2236!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2013-2236

EPSS FAQ

0.96%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 75 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2013-2236

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
2.6	LOW	AV:N/AC:H/Au:N/C:N/I:N/A:P	4.9	2.9	NIST
Access Vector: Network Access Complexity: High Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial

CWE ids for CVE-2013-2236

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2013-2236

http://rhn.redhat.com/errata/RHSA-2017-0794.html

RHSA-2017:0794 - Security Advisory - Red Hat Customer Portal

CVEs referencing this url
http://www.ubuntu.com/usn/USN-2941-1

USN-2941-1: Quagga vulnerabilities | Ubuntu security notices

CVEs referencing this url
http://seclists.org/oss-sec/2013/q3/24

oss-sec: Re: CVE request: Quagga OSPF-API stack overrun
http://www.debian.org/security/2013/dsa-2803

Debian -- Security Information -- DSA-2803-1 quagga

CVEs referencing this url
http://lists.quagga.net/pipermail/quagga-dev/2013-July/010622.html

[quagga-dev 10618] Re: calculating external route when a forwarding_address is present
http://www.securityfocus.com/bid/60955

Quagga CVE-2013-2236 Stack Buffer Overflow Vulnerability
http://nongnu.mirrors.hostinginnederland.nl//quagga/quagga-0.99.22.3.changelog.txt
http://git.savannah.gnu.org/gitweb/?p=quagga.git;a=commitdiff;h=3f872fe60463a931c5c766dbf8c36870c0023e88

Savannah Git Hosting - quagga.git/commitdiff
Patch