Vulnerability CVE-2006-2223

Vulnerability Name:

CVE-2006-2223 (CCN-26243)

Assigned:

2006-05-03

Published:

2006-05-03

Updated:

2018-10-18

Summary:

RIPd in Quagga 0.98 and 0.99 before 20060503 does not properly implement configurations that (1) disable RIPv1 or (2) require plaintext or MD5 authentication, which allows remote attackers to obtain sensitive information (routing state) via REQUEST packets such as SEND UPDATE.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

Vulnerability Type:

CWE-20

Vulnerability Consequences:

Obtain Information

References:

Source: SGI
Type: UNKNOWN
20060602-01-U

Source: CCN
Type: Full-Disclosure Mailing List, Tue May 02 2006 - 20:32:17 CDT
Quagga RIPD unauthenticated route table broadcast

Source: CCN
Type: Quagga Bugzilla Bug 261
arh200604-1: RIPd unauthenticated route table broadcast

Source: CONFIRM
Type: UNKNOWN
http://bugzilla.quagga.net/show_bug.cgi?id=261

Source: MITRE
Type: CNA
CVE-2006-2223

Source: CCN
Type: RHSA-2006-0525
quagga security update

Source: CCN
Type: RHSA-2006-0533
zebra security update

Source: CCN
Type: SA19910
Quagga RIPd RIPv1 Request Handling Security Issue

Source: SECUNIA
Type: Patch, Vendor Advisory
19910

Source: SECUNIA
Type: Vendor Advisory
20137

Source: SECUNIA
Type: Vendor Advisory
20138

Source: SECUNIA
Type: Vendor Advisory
20221

Source: SECUNIA
Type: Vendor Advisory
20420

Source: SECUNIA
Type: Vendor Advisory
20421

Source: SECUNIA
Type: Vendor Advisory
20782

Source: SECUNIA
Type: Vendor Advisory
21159

Source: CCN
Type: SECTRACK ID: 1016204
Quagga Bugs Let Remote Users Obtain or Modify Routing Information and Local Users Deny Service

Source: SECTRACK
Type: UNKNOWN
1016204

Source: CCN
Type: ASA-2006-114
zebra security update (RHSA-2006-0533)

Source: CCN
Type: ASA-2006-115
quagga security update (RHSA-2006-0525)

Source: DEBIAN
Type: UNKNOWN
DSA-1059

Source: DEBIAN
Type: DSA-1059
quagga -- several vulnerabilities

Source: CCN
Type: GLSA-200605-15
Quagga Routing Suite: Multiple vulnerabilities

Source: GENTOO
Type: UNKNOWN
GLSA-200605-15

Source: SUSE
Type: UNKNOWN
SUSE-SR:2006:017

Source: OSVDB
Type: UNKNOWN
25224

Source: CCN
Type: OSVDB ID: 25224
Quagga RIPd RIPv1 Request Routing Table Disclosure

Source: CCN
Type: Quagga Web site
2006-05-04: 0.98.6 Release Candidate to address Security issues

Source: REDHAT
Type: UNKNOWN
RHSA-2006:0525

Source: REDHAT
Type: UNKNOWN
RHSA-2006:0533

Source: BUGTRAQ
Type: UNKNOWN
20060503 Quagga RIPD unauthenticated route table broadcast

Source: BUGTRAQ
Type: UNKNOWN
20060503 Re: Quagga RIPD unauthenticated route injection

Source: BID
Type: Exploit, Patch
17808

Source: CCN
Type: BID-17808
Quagga Information Disclosure and Route Injection Vulnerabilities

Source: CCN
Type: USN-284-1
Quagga vulnerabilities

Source: XF
Type: UNKNOWN
quagga-ripv1-information-disclosure(26243)

Source: XF
Type: UNKNOWN
quagga-ripv1-information-disclosure(26243)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:9985

Source: UBUNTU
Type: UNKNOWN
USN-284-1

Source: SUSE
Type: SUSE-SR:2006:017
SUSE Security Summary Report

Vulnerable Configuration:

Configuration 1:

cpe:/a:quagga:quagga:0.98.5:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.3:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:4:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

Configuration CCN 1:

cpe:/a:quagga:quagga:0.98.5:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.3:*:*:*:*:*:*:*

AND

cpe:/o:gentoo:linux:*:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1:*:as:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::es:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::as:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

OR cpe:/o:debian:debian_linux:3.1:*:*:*:*:*:*:*

OR cpe:/o:redhat:linux_advanced_workstation:2.1::itanium:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20062223	V	CVE-2006-2223	2022-06-30
oval:org.opensuse.security:def:42432	P	Security update for libeconf, shadow and util-linux (Moderate)	2022-04-19
oval:org.opensuse.security:def:112629	P	libfpm_pb0-1.2.4-2.14 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:31752	P	Security update for MozillaFirefox (Important) (in QA)	2022-01-14
oval:org.opensuse.security:def:31751	P	Security update for java-1_8_0-ibm (Important) (in QA)	2022-01-04
oval:org.opensuse.security:def:31321	P	Security update for glib-networking (Important)	2021-12-13
oval:org.opensuse.security:def:42223	P	Security update for glibc (Moderate)	2021-12-08
oval:org.opensuse.security:def:26178	P	Security update for the Linux Kernel (Important)	2021-12-02
oval:org.opensuse.security:def:26176	P	Security update for speex (Moderate)	2021-12-01
oval:org.opensuse.security:def:31713	P	Security update for clamav (Moderate)	2021-12-01
oval:org.opensuse.security:def:31709	P	Security update for java-1_8_0-openjdk (Important)	2021-11-23
oval:org.opensuse.security:def:31295	P	Security update for transfig (Important)	2021-10-29
oval:org.opensuse.security:def:26151	P	Security update for python3 (Moderate)	2021-10-20
oval:org.opensuse.security:def:32205	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)	2021-10-18
oval:org.opensuse.security:def:32206	P	Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)	2021-10-18
oval:org.opensuse.security:def:26142	P	Security update for apache2 (Important)	2021-10-06
oval:org.opensuse.security:def:31283	P	Security update for apache2 (Important)	2021-10-06
oval:org.opensuse.security:def:106111	P	libfpm_pb0-1.2.4-2.14 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:26114	P	Security update for openexr (Important)	2021-09-02
oval:org.opensuse.security:def:26119	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:32988	P	Security update for aspell (Important)	2021-08-25
oval:org.opensuse.security:def:26103	P	Security update for the Linux Kernel (Important)	2021-08-10
oval:org.opensuse.security:def:26102	P	Security update for php72 (Important)	2021-08-06
oval:org.opensuse.security:def:26098	P	Security update for webkit2gtk3 (Important)	2021-08-03
oval:org.opensuse.security:def:32157	P	Security update for qemu (Important)	2021-07-29
oval:org.opensuse.security:def:31650	P	Security update for arpwatch (Important)	2021-06-28
oval:org.opensuse.security:def:32949	P	Security update for webkit2gtk3 (Important)	2021-06-17
oval:org.opensuse.security:def:32118	P	Security update for freeradius-server (Moderate)	2021-06-11
oval:org.opensuse.security:def:36553	P	quagga-0.99.15-0.14.11 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:42692	P	quagga-0.99.15-0.14.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36285	P	quagga-0.99.15-0.14.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:31189	P	Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)	2021-06-04
oval:org.opensuse.security:def:32103	P	Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)	2021-06-04
oval:org.opensuse.security:def:32101	P	Security update for libwebp (Critical)	2021-06-02
oval:org.opensuse.security:def:26038	P	Security update for curl (Moderate)	2021-04-28
oval:org.opensuse.security:def:32059	P	Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP3) (Important)	2021-04-07
oval:org.opensuse.security:def:32061	P	Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important)	2021-04-07
oval:org.opensuse.security:def:31369	P	Security update for MozillaFirefox (Important)	2021-03-31
oval:org.opensuse.security:def:26204	P	Security update for freeradius-server (Low)	2021-03-04
oval:org.opensuse.security:def:32267	P	Security update for grub2 (Important)	2021-03-02
oval:org.opensuse.security:def:31737	P	Security update for python-cryptography (Important)	2021-03-02
oval:org.opensuse.security:def:32245	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)	2021-02-10
oval:org.opensuse.security:def:31284	P	Security update for python3 (Important)	2021-02-08
oval:org.opensuse.security:def:26084	P	Security update for postgresql, postgresql12, postgresql13 (Important)	2021-01-26
oval:org.opensuse.security:def:26045	P	Security update for gimp (Moderate)	2021-01-04
oval:org.opensuse.security:def:35635	P	quagga-0.99.15-0.1.55 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35816	P	quagga-0.99.15-0.6.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:42042	P	quagga-0.99.15-0.1.55 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:36025	P	quagga-0.99.15-0.12.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:31557	P	Security update for python-setuptools (Important)	2020-12-02
oval:org.opensuse.security:def:26387	P	Security update for ffmpeg (Moderate)	2020-12-01
oval:org.opensuse.security:def:25816	P	Security update for libqt4 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25367	P	Security update for MozillaFirefox (Moderate)	2020-12-01
oval:org.opensuse.security:def:31501	P	Security update for python-pycrypto (Important)	2020-12-01
oval:org.opensuse.security:def:27551	P	quagga on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25834	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:31837	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:26528	P	bzip2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25904	P	Security update for gegl (Moderate)	2020-12-01
oval:org.opensuse.security:def:32741	P	libzip1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25442	P	Security update for libcaca (Moderate)	2020-12-01
oval:org.opensuse.security:def:26253	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:32571	P	libvirt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25846	P	Security update for gd (Moderate)	2020-12-01
oval:org.opensuse.security:def:26732	P	kvm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31104	P	Security update for the SUSE Linux Enterprise 11 SP3 Kernel for Teradata (Important)	2020-12-01
oval:org.opensuse.security:def:25651	P	Security update for libvirt (Important)	2020-12-01
oval:org.opensuse.security:def:31893	P	Security update for expat (Moderate)	2020-12-01
oval:org.opensuse.security:def:26566	P	ipsec-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33248	P	quagga on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31491	P	Security update for Python	2020-12-01
oval:org.opensuse.security:def:26820	P	squid on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26815	P	quagga on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25186	P	Security update for ruby2.1 (Important)	2020-12-01
oval:org.opensuse.security:def:25792	P	Security update for libvirt (Moderate)	2020-12-01
oval:org.opensuse.security:def:31998	P	Security update for jpeg (Moderate)	2020-12-01
oval:org.opensuse.security:def:27248	P	nfs-client on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31503	P	Security update for python27 (Moderate)	2020-12-01
oval:org.opensuse.security:def:32417	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:31923	P	Security update for ghostscript-library (Moderate)	2020-12-01
oval:org.opensuse.security:def:25198	P	Security update for perl (Important)	2020-12-01
oval:org.opensuse.security:def:31413	P	Security update for php53 (Important)	2020-12-01
oval:org.opensuse.security:def:25996	P	Security update for libvirt (Moderate)	2020-12-01
oval:org.opensuse.security:def:25575	P	Security update for libX11 (Important)	2020-12-01
oval:org.opensuse.security:def:26411	P	Security update for go (Moderate)	2020-12-01
oval:org.opensuse.security:def:32505	P	enscript on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32600	P	quagga on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25390	P	Security update for python3 (Important)	2020-12-01
oval:org.opensuse.security:def:25650	P	Security update for SDL (Moderate)	2020-12-01
oval:org.opensuse.security:def:31858	P	Security update for cups (Important)	2020-12-01
oval:org.opensuse.security:def:26513	P	Security update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:26600	P	librpcsecgss on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25528	P	Security update for texlive (Moderate)	2020-12-01
oval:org.opensuse.security:def:31769	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:26350	P	Security update for ansible (Moderate)	2020-12-01
oval:org.opensuse.security:def:25859	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:26834	P	tomcat6 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26306	P	Security update for python-Jinja2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25763	P	Security Update for Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:31857	P	Security update for cups (Important)	2020-12-01
oval:org.opensuse.security:def:27023	P	quagga on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25366	P	Security update for ghostscript (Important)	2020-12-01
oval:org.opensuse.security:def:26000	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:27516	P	mozilla-nspr-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31763	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:26444	P	Security update for mumble (Moderate)	2020-12-01
oval:org.opensuse.security:def:25865	P	Security update for pcre (Moderate)	2020-12-01
oval:org.opensuse.security:def:25378	P	Security update for xorg-x11-server (Important)	2020-12-01
oval:org.opensuse.security:def:31593	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:32527	P	gtk2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25835	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:31969	P	Security update for ipsec-tools (Moderate)	2020-12-01
oval:org.opensuse.security:def:26679	P	cron on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25918	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:32780	P	quagga on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31103	P	Security update for kernel-source (Important)	2020-12-01
oval:org.opensuse.security:def:25570	P	Security update for mailman (Important)	2020-12-01
oval:org.opensuse.security:def:26292	P	Security update for the Linux Kernel (Moderate)	2020-12-01
oval:org.opensuse.security:def:33209	P	mutt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25910	P	Security update for gstreamer-0_10-plugins-base (Low)	2020-12-01
oval:org.opensuse.security:def:26781	P	mailman on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26780	P	lvm2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31115	P	Security update for krb5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25708	P	Security update for mariadb-100 (Moderate)	2020-12-01
oval:org.opensuse.security:def:31949	P	Security update for grub2 (Important)	2020-12-01
oval:org.opensuse.security:def:26610	P	log4net on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31492	P	Security update for Python	2020-12-01
oval:org.opensuse.security:def:32361	P	Security update for strongswan (Important)	2020-12-01
oval:org.opensuse.security:def:31879	P	Security update for dhcp (Moderate)	2020-12-01
oval:org.opensuse.security:def:25187	P	Security update for java-1_7_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:25943	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:32037	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:27283	P	quagga on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25574	P	Security update for MozillaFirefox (Moderate)	2020-12-01
oval:org.opensuse.security:def:31577	P	Security update for sudo (Important)	2020-12-01
oval:org.opensuse.security:def:26260	P	Security update for Mesa (Moderate)	2020-12-01
oval:org.opensuse.security:def:32466	P	Security update for xorg-x11-libs (Moderate)	2020-12-01
oval:org.opensuse.security:def:32561	P	libpng12-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25262	P	Security update for spamassassin (Important)	2020-12-01
oval:org.opensuse.security:def:31470	P	Security update for ppp	2020-12-01
oval:org.opensuse.security:def:32311	P	Security update for quagga (Moderate)	2020-12-01
oval:org.opensuse.security:def:25586	P	Security update for libvirt (Important)	2020-12-01
oval:org.opensuse.security:def:31801	P	security update for xen (Moderate)	2020-12-01
oval:org.opensuse.security:def:26464	P	Security update for enigmail (Moderate)	2020-12-01
oval:org.opensuse.security:def:25962	P	Security update for mariadb (Important)	2020-12-01
oval:org.opensuse.security:def:25471	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25778	P	Security update for mariadb (Important)	2020-12-01
oval:org.opensuse.security:def:31945	P	Security update for gnutls (Important)	2020-12-01
oval:org.opensuse.security:def:26552	P	g3utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26635	P	quagga on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25612	P	Security update for shim (Moderate)	2020-12-01
oval:org.opensuse.security:def:31818	P	Security update for audiofile (Moderate)	2020-12-01
oval:org.opensuse.security:def:26988	P	mailman on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25916	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:26878	P	curl on GA media (Moderate)	2020-12-01
oval:org.mitre.oval:def:9985	V	RIPd in Quagga 0.98 and 0.99 before 20060503 does not properly implement configurations that (1) disable RIPv1 or (2) require plaintext or MD5 authentication, which allows remote attackers to obtain sensitive information (routing state) via REQUEST packets such as SEND UPDATE.	2013-04-29
oval:com.redhat.rhsa:def:20060525	P	RHSA-2006:0525: quagga security update (Moderate)	2006-06-01
oval:org.debian:def:1059	V	several vulnerabilities	2006-05-19

BACK