Test ID:	1.3.6.1.4.1.25623.1.0.64152
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-775-1)
Summary:	The remote host is missing an update for the 'quagga' package(s) announced via the USN-775-1 advisory.
Description:	Summary: The remote host is missing an update for the 'quagga' package(s) announced via the USN-775-1 advisory. Vulnerability Insight: It was discovered that the BGP service in Quagga did not correctly handle certain AS paths containing 4-byte ASNs. An authenticated remote attacker could exploit this flaw to cause bgpd to abort, leading to a denial of service. Affected Software/OS: 'quagga' package(s) on Ubuntu 6.06, Ubuntu 8.04, Ubuntu 8.10, Ubuntu 9.04. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1572 BugTraq ID: 34817 http://www.securityfocus.com/bid/34817 Debian Security Information: DSA-1788 (Google Search) http://www.debian.org/security/2009/dsa-1788 https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01037.html https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01107.html http://www.mandriva.com/security/advisories?name=MDVSA-2009:109 http://thread.gmane.org/gmane.network.quagga.devel/6513 http://www.openwall.com/lists/oss-security/2009/05/01/1 http://www.openwall.com/lists/oss-security/2009/05/01/2 http://marc.info/?l=quagga-dev&m=123364779626078&w=2 http://www.osvdb.org/54200 http://www.securitytracker.com/id?1022164 http://secunia.com/advisories/34999 http://secunia.com/advisories/35061 http://secunia.com/advisories/35203 http://secunia.com/advisories/35685 SuSE Security Announcement: SUSE-SR:2009:012 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html http://www.ubuntu.com/usn/usn-775-1 XForce ISS Database: quagga-systemnumber-dos(50317) https://exchange.xforce.ibmcloud.com/vulnerabilities/50317
Copyright	Copyright (C) 2009 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.