Quagga BGP Daemon (bgpd) Debug Code-to-String Conversion Table Overrun Vulnerability

Quagga BGP Daemon (bgpd) Debug Code-to-String Conversion Table Overrun Vulnerability

CVE-2018-5380 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:N/A:P

The Quagga BGP daemon (bgpd) prior to version 1.2.3 can overrun internal BGP code-to-string conversion tables used for debug by 1 pointer value, based on input.

Learn more about our Internal Network Penetration Testing.