Cisco IOS 11.1(x) through 11.3(x) and 12.0(x) through 12.2(x), when configured for BGP routing, allows remote attackers to cause a denial of service (device reload) via malformed BGP (1) OPEN or (2) UPDATE messages.

**Overview**

Multiple implementations of the Border Gateway Protocol (BGP) contain vulnerabilities related to the processing of UPDATE and OPEN messages. The impacts of these vulnerabilities appear to be limited to denial of service.

**Description**

BGP (RFC 1771) is designed to exchange network reachability information between peer nodes. Information advertised by a BGP system to its peers includes timers, metrics, and paths to different Autonomous System (AS) networks. Routing between AS networks depends on BGP, and the Internet is a network of AS networks. Therefore, vulnerabilities in BGP have the potential to affect the Internet infrastructure.

Multiple BGP implementations contain vulnerabilities handling exceptional OPEN and UPDATE messages. While the details of the individual vulnerabilities are different, the impacts appear to be limited to denial of service. In addition, most BGP implementations do not accept messages from arbitrary sources. Some BGP implementations only accept TCP connections (179/tcp) from properly configured peers, and some implementations require a valid AS number in the BGP message data. To deliver malicious messages to such systems, an attacker would need to spoof a TCP connection or have access to a trusted BGP peer. The attacker may also need to know a valid AS number.

For information about specific BGP implementations, please see the Systems Affected section below.

**Impact**

A remote attacker can cause a denial of service in a vulnerable system. In most cases, the attacker would need to act as a valid BGP peer. BGP session instability can result in "flapping" and other routing problems that may adversely affect Internet traffic.

**Solution**

**Apply a patch or upgrade**  
Apply a patch or upgrade as specified by your vendor.

**Restrict BGP access**

Using access control lists (ACLs) and BGP configuration settings, restrict access to valid networks and BGP peers.

**Authenticate BGP messages**

TCP MD5 (RFC 2385), IPsec, and S-BGP provide cryptographic authentication of network connections and/or BGP messages. Various performance and key distribution issues are associated with these authentication methods.

**Use out-of-band management channels**

When possible, use an out-of-band channel, such as a separate network, to transmit BGP other management traffic.

**Vendor Information**

Filter by content: Additional information available

 Sort by:

  
**CVSS Metrics**

Group

Score

Vector

Base

Temporal

Environmental

  
**References****Acknowledgements**

These vulnerabilities were reported as a result of research done by Cisco. Thanks to Cisco for sharing this research and helping to coordinate the disclosure of information about these vulnerabilities.

This document was written by Art Manion.

**Other Information**

**CVE IDs:**

CVE-2004-0589

**Severity Metric:**

8.60

**Date Public:**

2004-06-16

**Date First Published:**

2004-06-16

**Date Last Updated:**

2004-06-28 16:09 UTC

**Document Revision:**

39

CVE-2004-0589: CERT/CC Vulnerability Note VU#784540

Argument injection vulnerability in Opera before 7.50 does not properly filter "-" characters that begin a hostname in a telnet URI, which allows remote attackers to insert options to the resulting command line and overwrite arbitrary files via (1) the "-f" option on Windows XP or (2) the "-n" option on Linux.

**Get Opera Browser for any device**

Experience faster, distraction-free browsing with Ad blocking, and browse privately. Smoothly sync your data and send files between Opera on Mac, Windows, Linux, iOS, Android, and Chromebook. See more

**Why Opera?**

Opera’s innovative features give you easy control and the smoothest browsing anywhere. Listen to your music and chat with friends from the sidebar, watch popped-out videos in the background while browsing, organize your tabs easily with Workspaces, save web content and share it visually with Pinboards, and share files with Opera on all your devices.

Browse the web without ads or pop-ups, and protect your privacy on any website - both on desktop and mobile devices. No addons needed. Opera’s free VPN, Ad blocker and Tracker blocker are built right in to make your browsing faster, safer, and more secure.

 ![Opera Browser for Android & iOS](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/browsers-opera/opera__mobile--android-iOS.8251333048b6.png)

This is Opera’s flagship browser - the very best personal browsing experience for your mobile device. Its award-winning design is packed with features that give you enhanced online privacy, save you time, and empower you to do more on the web of tomorrow.

![Get it on Google Play.](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/googleplay/google-play--en.80d509fddb21.png)

![Download on the App Store.](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/appstore/app-store--en.b9be99738278.png)

**See why people love Opera**

Browsing the web is better with Opera for Mac, Windows, iOS, and Android. Here’s what makes the difference.

The most important features in Opera for computers and phones are always with you without installing additional extensions. Dark theme, blocking ads, and the ability to easily send data between devices, wherever you are.

![Light Mode](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png)

**Light Mode**

Customize Opera for day or night. Change color themes and modes to reduce eye strain for more comfortable night or day sessions.

![Light Mode](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png)

![Dark mode](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png)

**Dark mode**

Customize Opera for day or night. Change color themes and modes to reduce eye strain for more comfortable night or day sessions.

![Dark mode](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png)

![Dark mode](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png)

![Workspaces](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/icons/features/set-1/workspaces.b45c3de68110.svg)

**Workspaces**

Organize tab groups according to your interests - like work, planning holidays, games, or shopping. Enjoy a cleaner, simpler and distraction-free browser.

Read more

![Workspaces](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/slider/workspaces/workspaces--group-tabs.8304a8f4a64f.png)

![Messengers](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/icons/features/set-1/messengers.3eb5155a401f.svg)

**Messengers**

Chat with your friends and browse at the same time, with no need to switch between tabs or programs.

Read more

![Messengers](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/slider/messenger/messenger--messengers.e9b93765bbd6.png)

![Privacy](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/icons/features/set-1/privacy.c0aff165269d.svg)

**Privacy**

Browse the web in private mode on any device. All data is erased when you close the private window.

Read more

![Privacy](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/slider/privacy/privacy--two-phones.f541f6a6c4f4.png)

![Flow file sharing](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/slider/flow/flow--connect-devices.defccd1842f2.png)

![Free VPN](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/icons/features/set-1/free-vpn.597fe7f7c7ac.svg)

**Free VPN**

Reduce online tracking and shield your browsing from everybody besides you. Our built-in VPN has got you covered.

Read more

![Free VPN](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/slider/free-vpn/free-vpn--free-vpn.0b06a7d4f30d.png)

![Crypto wallet](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/icons/features/set-1/crypto-wallet.92a910193a17.svg)

**Crypto wallet**

Send, receive, and pay with cryptocurrencies, discover dApps with your phone, and safely store tokens & collectibles in the Opera Crypto Wallet.

Read more

![Crypto wallet](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/slider/crypto-wallet/crypto-wallet--two-phones.c271d3486c45.png)

![Ad blocker](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/icons/features/set-1/ad-blocker.9b8dc587a3d8.svg)

**Ad blocker**

Block ads for a cleaner, safer, and more private browser. Ad blocker is built into the Opera browser, so you’re good to go.

Read more

![Ad blocker](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/slider/ad-blocker/ad-blocker--and-mobile.592b89b655af.png)

![Award-winning design](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/icons/features/set-1/award-winning-design.4137e62c43af.svg)

**Award-winning design**

Opera won the Red Dot Award for its beautiful design that lets you explore the web using just one hand. Use the Fast Action Button to instantly search, switch, reload, close or share tabs.

![Award-winning design](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/slider/award-winning-design/award-winning-design.eaf4cb005ac2.png)

![Pinboards](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/icons/features/set-1/pinboards.ca732193fea5.svg)

**Pinboards**

Save web content easily, share it visually. Collect pictures, links, music, files and notes to plan getaways, create vision boards, compare shopping, share designs - anything you need.

Read more

![Pinboards](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/slider/pin-boards/pin-boards--collect.2e4372cdec32.png)

See all features

![Pinboards](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png)

**Pinboards**

Save and collect web content easily, share it visually.

![Workspaces](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png)

**Workspaces**

Organize tab groups in separate customizable workspaces.

![Ad blocker](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png)

**Ad blocker**

Browse with less distractions and load websites faster.

![Personal news](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png)

**Personal news**

A customizable and convenient newsfeed on your start page.

![Snapshot tool](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png)

**Snapshot tool**

Easily capture, edit and share your snapshots from webpages.

![Opera Flow](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png)

**Opera Flow**

Instantly send files, links and notes between your devices.

![Video pop-out](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png)

**Video pop-out**

Pop out online videos so they float on top of webpages as you browse.

![Free VPN](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png)

**Free VPN**

Browse comfortably with enhanced privacy and security, for free.

![Sync data](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png)

**Sync data**

Synchronize the Opera browsers on any of your devices.

![Easy Files](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png)

**Easy Files**

Attach files in one click without digging through folders.

![Battery saver](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png)

**Battery saver**

An easy way to noticeably extend your laptop’s battery life.

![Unit converter](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png)

**Unit converter**

Automatically convert time-zones, currencies and units of measurement.

Ready?

**It’s easy to switch to Opera**

You know when you don't want to do something, like go out, but a friend makes you and then you're really glad you did. This is one of those situations.

**Opera Browser for computers**

**Browser for Windows**

We’ve been developing desktop browsers since the mid 90’s. Opera Browser is our main product and the first to receive the major updates that we later roll out to other browsers. Opera Browser for Windows combines safety, privacy & speed.

**Browser for macOS**

Opera Browser for macOS is no different than Opera Browser for Windows. It's also a desktop browser that maximizes your privacy, content enjoyment, and productivity. In our browsers for computers, you can use a wide range of add-ons to personalize your browser.

**Browser for Linux**

Just like the browsers for Windows and macOS, the browser for Linux is a desktop browser and works on the same principles. In these browsers, you can also use Chrome extensions for even better personalization of your Opera browser.

**Browser for Chromebook**

**Opera Browser for mobile**

**Browser for Android**

Desktop and mobile devices are vastly different, and we created Opera for Android devices capturing the spirit of desktop browsers as accurately as possible. It’s your perfect online companion that protects your privacy and personal information.

**Browser for iOS**

Opera Browser for iOS makes using it one-handed even easier with its Fast Action Button. Similar to the Android browser, it has an integrated ad blocker, a dark theme, and numerous built-in features that make browsing the web faster and safer.

**You deserve a better browser**

Opera's free VPN, Ad blocker, and Flow file sharing. Just a few of the must-have features built into Opera for faster, smoother and distraction-free browsing designed to improve your online experience.

  ![Opera](https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png)

CVE-2004-0473: Opera Browser | Windows, Mac, Linux, Android, iOS | Opera

Denial of service in Samba NETBIOS name service daemon (nmbd).

CVE-1999-0810: IBM X-Force Exchange

Cisco Gigabit Switch routers running IOS allow remote attackers to forward unauthorized packets due to improper handling of the "established" keyword in an access list.

Tag

#ios