Vulnerability CVE-2012-0250

Vulnerability Name:

CVE-2012-0250 (CCN-74089)

Assigned:

2011-12-21

Published:

2012-03-28

Updated:

2018-01-18

Summary:

Buffer overflow in the OSPFv2 implementation in ospfd in Quagga before 0.99.20.1 allows remote attackers to cause a denial of service (daemon crash) via a Link State Update (aka LS Update) packet containing a network-LSA link-state advertisement for which the data-structure length is smaller than the value in the Length header field.

CVSS v3 Severity:

7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

3.3 Low (CVSS v2 Vector: AV:A/AC:L/Au:N/C:N/I:N/A:P)
2.4 Low (Temporal CVSS v2 Vector: AV:A/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Adjacent_Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
5.5 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

2.9 Low (REDHAT CVSS v2 Vector: AV:A/AC:M/Au:N/C:N/I:N/A:P)
2.1 Low (REDHAT Temporal CVSS v2 Vector: AV:A/AC:M/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Adjacent_Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

Vulnerability Type:

CWE-119

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2012-0250

Source: FEDORA
Type: UNKNOWN
FEDORA-2012-5352

Source: FEDORA
Type: UNKNOWN
FEDORA-2012-5411

Source: FEDORA
Type: UNKNOWN
FEDORA-2012-5436

Source: CCN
Type: RHSA-2012-1258
Moderate: quagga security update

Source: REDHAT
Type: UNKNOWN
RHSA-2012:1258

Source: CCN
Type: RHSA-2012-1259
Moderate: quagga security update

Source: REDHAT
Type: UNKNOWN
RHSA-2012:1259

Source: CCN
Type: Quagga Web Site
Quagga 0.99.20.1 Released

Source: CCN
Type: SA48388
Quagga Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
48949

Source: CCN
Type: SA50593
McAfee Firewall Enterprise Quagga Vulnerabilities

Source: DEBIAN
Type: UNKNOWN
DSA-2459

Source: DEBIAN
Type: DSA-2459
quagga -- several vulnerabilities

Source: CCN
Type: US-CERT VU#551715
Quagga contains multiple vulnerabilities

Source: CERT-VN
Type: US Government Resource
VU#551715

Source: CCN
Type: BID-52531
Quagga Multiple Remote Security Vulnerabilities

Source: XF
Type: UNKNOWN
quagga-ospfd-bo(74089)

Source: CCN
Type: McAfee KnowledgeBase ID: KB76173
Firewall Enterprise: Response to vulnerability Quagga CVE-2012-0255, CVE-2012-0250, CVE-2012-0249, and CVE-2012-1820

Vulnerable Configuration:

Configuration 1:

cpe:/a:quagga:quagga:0.99.1:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.2:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.3:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.4:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.5:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.6:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.7:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.8:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.9:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.10:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.11:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.12:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.13:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.14:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.15:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.16:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.17:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.18:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.19:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:*:*:*:*:*:*:*:* (Version <= 0.99.20)

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:5::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:5::client_workstation:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:5::server:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:6:*:*:*:*:*:*:*

Configuration RedHat 6:

cpe:/o:redhat:enterprise_linux:6::server:*:*:*:*:*

Configuration RedHat 7:

cpe:/o:redhat:enterprise_linux:6::workstation:*:*:*:*:*

Configuration CCN 1:

cpe:/a:quagga:quagga:0.98.5:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.3:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.98.3:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.11:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.16:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.17:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.4:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.5:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.6:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.7:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.8:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.9:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.98.6:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.1:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.15:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.99.2:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.96.2:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.96.3:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.96.4:*:*:*:*:*:*:*

OR cpe:/a:quagga:quagga:0.97.3:*:*:*:*:*:*:*

AND

cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:client_workstation:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:client:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:6:*:server:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:6:*:workstation:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20120250	V	CVE-2012-0250	2022-05-20
oval:org.opensuse.security:def:33110	P	Security update for MozillaFirefox (Important) (in QA)	2022-01-14
oval:org.opensuse.security:def:33015	P	Security update for atftp (Moderate)	2021-09-27
oval:org.opensuse.security:def:30250	P	Security update for sqlite3 (Important)	2021-09-23
oval:org.opensuse.security:def:29425	P	Security update for MozillaFirefox (Important)	2021-09-22
oval:org.opensuse.security:def:30213	P	Security update for webkit2gtk3 (Important)	2021-06-17
oval:org.opensuse.security:def:29371	P	Security update for qemu (Important)	2021-06-02
oval:org.opensuse.security:def:29474	P	Security update for java-1_8_0-openjdk (Moderate)	2021-02-19
oval:org.opensuse.security:def:33624	P	Security update for openssh (Moderate)	2020-12-16
oval:org.opensuse.security:def:28860	P	Security update for mutt (Important)	2020-12-07
oval:org.opensuse.security:def:29077	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:32790	P	sysconfig on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33517	P	Security update for quagga	2020-12-01
oval:org.opensuse.security:def:29218	P	Security update for php53 (Important)	2020-12-01
oval:org.opensuse.security:def:32880	P	gzip on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28779	P	Security update for libxml2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:33580	P	Security update for MozillaFirefox, MozillaFirefox-branding-SLED, mozilla-nspr and mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:28791	P	Security update for mysql (Moderate)	2020-12-01
oval:org.opensuse.security:def:34262	P	Security update for postgresql94 (Moderate)	2020-12-01
oval:org.opensuse.security:def:29513	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:33254	P	sendmail on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28991	P	Security update for xfsprogs (Moderate)	2020-12-01
oval:org.opensuse.security:def:32789	P	sudo on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29575	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:33468	P	Security update for Linux kernel	2020-12-01
oval:org.opensuse.security:def:29134	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:32801	P	unzip on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33556	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:28780	P	Security update for libxml2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:33167	P	libnewt0_52 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34302	P	Security update for quagga	2020-12-01
oval:org.opensuse.security:def:29531	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:33411	P	Security update for salt (Moderate)	2020-12-01
oval:org.mitre.oval:def:17967	P	USN-1441-1 -- quagga vulnerabilities	2014-06-30
oval:org.mitre.oval:def:18610	P	DSA-2459-2 quagga - regression	2014-06-23
oval:org.mitre.oval:def:18647	P	DSA-2459-1 quagga - several	2014-06-23
oval:org.mitre.oval:def:23395	P	ELSA-2012:1258: quagga security update (Moderate)	2014-05-26
oval:org.mitre.oval:def:23882	P	ELSA-2012:1259: quagga security update (Moderate)	2014-05-26
oval:org.mitre.oval:def:21326	P	RHSA-2012:1258: quagga security update (Moderate)	2014-02-24
oval:org.mitre.oval:def:21278	P	RHSA-2012:1259: quagga security update (Moderate)	2014-02-24
oval:com.redhat.rhsa:def:20121258	P	RHSA-2012:1258: quagga security update (Moderate)	2012-09-12
oval:com.redhat.rhsa:def:20121259	P	RHSA-2012:1259: quagga security update (Moderate)	2012-09-12
oval:com.ubuntu.precise:def:20120250000	V	CVE-2012-0250 on Ubuntu 12.04 LTS (precise) - medium.	2012-04-05

BACK