Kevin BeaumontOct 2, 2023

BGP is the yellow pages that hangs the internet together with string.

Pretty incredible blog about BGP here from @benjojo https://blog.benjojo.co.uk/post/bgp-path-attributes-grave-error-handling

Talk to go with the blog: https://www.youtube.com/watch?v=6wMXEiFiueM&cbrd=1

Tl;dr - if you fuzz BGP attributes, you can very easily find ones which propagate to every router and crash routers. About half of vendors have easily reproducible issues. None of the vendors have bug bounty programmes. Or in other words, you can own the internet in your underpants.

Grave flaws in BGP Error handling

Show threadJames CapeNov 13, 2023
@GossiTheDog @benjojo I'm kind of impressed that anyone still has these issues, the huge Colt outage (actually wider than them) they mentioned was over a decade ago now...
Show threadbenjojo
@jcape I guess lightning strikes twice, since that same outage happened on June 2nd 2023, do you have a cite for the previous one?
James Cape (@[email protected])

274 Posts, 161 Following, 49 Followers ยท

Hachyderm.io
Nov 13, 2023 at 12:41pmWeb
Show threadJames CapeNov 15, 2023

@benjojo

2001 IOS bug: https://www.kb.cert.org/vuls/id/106392
2010 Juniper (probably the incident I remembered): https://supportportal.juniper.net/s/article/BGP-Malformed-AS-4-Byte-Transitive-Attributes-Drop-BGP-Sessions?language=en_US

CERT/CC Vulnerability Note VU#472136

Information Leak and DoS Vulnerabilities in Redmi Buds 3 Pro through 6 Pro