Researchers Uncover New BGP Flaws in Popular Internet Routing Protocol Software (FRR v 8.4)
-
I'm not using it , but doesn't pfSense use this ??
https://thehackernews.com/2023/05/researchers-uncover-new-bgp-flaws-in.html
/Bingo
-
@bingo600 If im reading this section correctly....
""The DoS condition may be prolonged indefinitely by repeatedly sending malformed packets. The main root cause is the same vulnerable code pattern copied into several functions related to different stages of parsing OPEN messages."
then the only way to be impacted by this is for the attacker to have compromised a bgp speaking system. BGP peers are established typically with defined neighbors in the configuration so you are not getting an OPEN message from an unknown neighbor. The exception to that would be if you have a BGP configuration and accept any connections from any neighbor -- which i do see within an enterprise. But i think that feature isnt even supported on pfsense. I remember seeing a forum post asking for such a feature in FRR.
-
J jimp moved this topic from Routing and Multi WAN on
