CVE-2011-3327 — Vulnetix

Try Vulnetix Request Demo

CVE-2011-3327 PUBLISHED

Reported by certcc · Published October 10, 2011

Heap-based buffer overflow in the ecommunity_ecom2str function in bgp_ecommunity.c in bgpd in Quagga before 0.99.19 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code by sending a crafted BGP UPDATE message over IPv4.

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
n/a	n/a	n/a

Timeline

Sep 26, 2011 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
Jul 10, 2023 EPSS Score
Aug 31, 2023 EPSS Score
Sep 5, 2023 EPSS Score

References

x_refsource_CONFIRM
VU#668534 third-party-advisoryx_refsource_CERT-VN
DSA-2316 vendor-advisoryx_refsource_DEBIAN
RHSA-2012:1259 vendor-advisoryx_refsource_REDHAT
x_refsource_MISC
46139 third-party-advisoryx_refsource_SECUNIA
SUSE-SU-2011:1075 vendor-advisoryx_refsource_SUSE
openSUSE-SU-2011:1155 vendor-advisoryx_refsource_SUSE
x_refsource_CONFIRM
GLSA-201202-02 vendor-advisoryx_refsource_GENTOO
RHSA-2012:1258 vendor-advisoryx_refsource_REDHAT
SUSE-SU-2011:1316 vendor-advisoryx_refsource_SUSE
46274 third-party-advisoryx_refsource_SECUNIA
48106 third-party-advisoryx_refsource_SECUNIA
x_refsource_CONFIRM
SUSE-SU-2011:1171 vendor-advisoryx_refsource_SUSE

Open in Interactive Console →