A stack-based buffer overflow in the FastNetMon BGP decoder allows remote attackers to execute arbitrary code via specially crafted BGP packets.

The function decode_bgp_subnet_encoding_ipv4_raw() fails to validate the prefix_bit_length field in BGP packets, leading to a stack-based buffer overflow when copying data into a local variable. This overflow can be exploited to achieve arbitrary code execution on the system.

With a CVSS score of 9.8, this is a critical vulnerability that allows an attacker to compromise a network monitoring instance. Given the role of FastNetMon in network traffic analysis, successful exploitation could provide an attacker with a strategic position to observe or disrupt network traffic.

Immediate Action: Upgrade to the latest version of FastNetMon Community Edition immediately.

Proactive Monitoring: Monitor network logs for malformed BGP traffic or unexpected service terminations.

Compensating Controls: Implement strict network filtering to ensure that only authorized BGP peers can communicate with the FastNetMon instance.

Public Exploit Available: false

This vulnerability is highly critical as it involves a memory corruption flaw reachable via network traffic. Immediate updates are required to secure the device, as an attacker with access to the network can easily trigger the overflow.