Foundry Networks Inc. Information for VU#784540

BGP implementations do not adequately handle malformed BGP OPEN and UPDATE messages

Status

Unknown. If you are the vendor named above, please contact us to update your status.

Vendor Statement

Foundry Networks is currently investigating this vulnerability. Foundry have reviewed and understood the vulnerability and have tested its latest shipping code v07.6.05g (as of June 16, 2004) against the vulnerability. This version of code is NOT vulnerable to the BGP flaw stated in VU#784540.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.