Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2013-0149
HistoryAug 05, 2013 - 1:22 p.m.

CVE-2013-0149

2013-08-0513:22:00
NVD-CWE-noinfo
[email protected]
web.nvd.nist.gov
149
2
cve-2013-0149
ospf
cisco
ios
denial of service
sensitive information
remote attackers
routing disruption
nvd

6.3 Medium

AI Score

Confidence

High

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:N/A:P

0.002 Low

EPSS

Percentile

55.2%

JSON

The OSPF implementation in Cisco IOS 12.0 through 12.4 and 15.0 through 15.3, IOS-XE 2.x through 3.9.xS, ASA and PIX 7.x through 9.1, FWSM, NX-OS, and StarOS before 14.0.50488 does not properly validate Link State Advertisement (LSA) type 1 packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a (1) unicast or (2) multicast packet, aka Bug IDs CSCug34485, CSCug34469, CSCug39762, CSCug63304, and CSCug39795.

Social References

More

Related

securityvulns 2
cisco 1
nessus 8
prion 12
ibm 2
checkpoint_advisories 1
openvas 3
debiancve 1
cert 1
cve 11
checkpoint_security 1
oracle 1
securityvulns
securityvulns
Cisco IOS / ASA / FWSM / NX-OS / StarOS OSPF protocol vulnerability
2013-08-12 00:00:00
Oracle / Sun / MySQL / PeopleSoft applications multiple security vulnerabilities
2013-12-09 00:00:00
cisco
cisco
OSPF LSA Manipulation Vulnerability in Multiple Cisco Products
2013-08-01 16:00:00
nessus
nessus
OSPF LSA Manipulation Vulnerability in Cisco ASA (cisco-sa-20130801-lsaospf)
2013-08-16 00:00:00
OSPF LSA Manipulation Vulnerability in Cisco IOS XE (cisco-sa-20130801-lsaospf)
2013-08-16 00:00:00
Solaris 10 (x86) : 126207-11
2018-03-12 00:00:00
prion
prion
Design/Logic Flaw
2013-08-05 13:22:00
Design/Logic Flaw
2014-01-23 17:55:00
Design/Logic Flaw
2014-01-23 17:55:00
ibm
ibm
Security Bulletin: IBM PureData System For Operational Analytics A1791 is affected by an OSPF vulnerability (CVE-2013-0149)
2022-09-25 23:13:40
Security Bulletin: Vulnerability in OSPFv2 Routing Protocol Used in IBM i Operating System (CVE-2013-0149 and CVE-2013-5385)
2019-12-18 14:26:38
checkpoint_advisories
checkpoint_advisories
Cisco OSPF LSA Manipulation Denial of Service (CVE-2013-0149)
2013-08-13 00:00:00
openvas
openvas
Juniper Networks Junos OS OSPF Protocol Vulnerability
2013-11-29 00:00:00
SUSE: Security Advisory (SUSE-SU-2013:1470-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2014:0879-1)
2021-06-09 00:00:00
debiancve
debiancve
CVE-2013-0149
2013-08-05 13:22:00
cert
cert
Open Shortest Path First (OSPF) Protocol does not specify unique LSA lookup identifiers
2013-08-02 00:00:00
cve
cve
CVE-2013-4806
2013-08-12 10:58:00
CVE-2013-7310
2014-01-23 17:55:00
CVE-2013-7309
2014-01-23 17:55:00
checkpoint_security
checkpoint_security
Check Point response to OSPF LSA spoofing vulnerability (CVE-2013-0149, CVE-2013-7311)
2013-08-20 21:00:00
oracle
oracle
Oracle Critical Patch Update - October 2013
2013-10-15 00:00:00

6.3 Medium

AI Score

Confidence

High

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:N/A:P

0.002 Low

EPSS

Percentile

55.2%

JSON
Related for CVE-2013-0149
securityvulns2cisco1nessus8prion12ibm2checkpoint_advisories1openvas3debiancve1cert1cve11checkpoint_security1oracle1