Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2003-0795

CWE-20 — Improper Input Validation6 documents6 sources

Severity

5.0MEDIUM

EPSS

8.0%

top 7.90%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Quagga Quagga GNU Zebra SGI Propack

Timeline

PublishedDec 15

Latest updateApr 29

Description

The vty layer in Quagga before 0.96.4, and Zebra 0.93b and earlier, does not verify that sub-negotiation is taking place when processing the SE marker, which allows remote attackers to cause a denial of service (crash) via a malformed telnet command to the telnet CLI port, which may trigger a null dereference.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

▶NVDquagga/quagga0.96.3+4

▶NVDgnu/zebra4 versions+3

▶NVDsgi/propack2.2.1, 2.3+1

Patches

Patch: www.debian.org ↗Patch: www.redhat.com ↗Patch: www.redhat.com ↗

🔴Vulnerability Details

GHSA

GHSA-77hp-5q78-94cv: The vty layer in Quagga before 0↗2022-04-29

▶

CVEList

CVE-2003-0795: The vty layer in Quagga before 0↗2003-11-18

▶

💥Exploits & PoCs

Exploit-DB

GNU Zebra 0.9x / Quagga 0.96 - Remote Denial of Service↗2003-11-12

▶

📋Vendor Advisories

Red Hat

security flaw↗2003-10-15

▶

💬Community

Bugzilla

CVE-2003-0795 security flaw↗2018-08-16

▶