Lucene search

[email protected]NVD:CVE-2013-7309

HistoryJan 23, 2014 - 5:55 p.m.

CVE-2013-7309

2014-01-2317:55:05

[email protected]

web.nvd.nist.gov

CVSS2

5.4

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.2

Confidence

Low

EPSS

0.003

Percentile

68.1%

JSON

The OSPF implementation in Extreme Networks EXOS does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149.

Affected configurations

Nvd

Node

extremenetworksexosMatch-

VendorProductVersionCPE
extremenetworksexos-cpe:2.3:o:extremenetworks:exos:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
extremenetworks	exos	-	cpe:2.3:o:extremenetworks:exos:-:::::::*

References

www.kb.cert.org/vuls/id/229804

www.kb.cert.org/vuls/id/BLUU-985QSE

CVSS2

5.4

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.2

Confidence

Low

EPSS

0.003

Percentile

68.1%

JSON

Related for NVD:CVE-2013-7309

prion12 cve12 cvelist12 debiancve1 checkpoint_advisories1 openvas3 nessus8 ibm2 nvd11 cert1 cisco1 securityvulns2 checkpoint_security1 oracle1