CVE-2009-0780
OpenBSD 4.3-4.4 - Denial of Service via Long AS Path in bgpd
Title source: llmDescription
The aspath_prepend function in rde_attr.c in bgpd in OpenBSD 4.3 and 4.4 allows remote attackers to cause a denial of service (application crash) via an Autonomous System (AS) advertisement containing a long AS path.
References (7)
Core 7
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/52271
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/33828
Patch, Vendor Advisory vendor-advisory
x_refsource_openbsd
http://openbsd.org/errata44.html#010_bgpd
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1021736
Patch, Vendor Advisory vendor-advisory
x_refsource_openbsd
http://openbsd.org/errata43.html#010_bgpd
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/33975
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/48812
Scores
EPSS
0.0119
EPSS Percentile
79.1%
Details
Status
published
Products (2)
openbsd/openbsd
4.3
openbsd/openbsd
4.4
Published
Mar 04, 2009
Tracked Since
Feb 18, 2026