CVE-2018-0466

A vulnerability in the Open Shortest Path First version 3 OSPFv3 implementation in Cisco IOS and IOS XE Software could allow an unauthenticated, adjacent attacker to cause an affected device to reload. The vulnerability is due to incorrect handling of specific OSPFv3 packets. An attacker could...

Cisco IOS and IOS XE Denial of Service Vulnerability (CNVD-2018-20235)

Cisco IOS Software and IOS XE Software are both operating systems developed by Cisco for its network devices. A denial of service vulnerability exists in the Open Shortest Path First version 3 OSPFv3 implementation in Cisco IOS Software and IOS XE Software. An attacker in close physical proximity...

UBUNTU-CVE-2017-3224

Open Shortest Path First OSPF protocol implementations may improperly determine Link State Advertisement LSA recency for LSAs with MaxSequenceNumber. According to RFC 2328 section 13.1, for two instances of the same LSA, recency is determined by first comparing sequence numbers, then checksums, a...

tcpdump: Buffer over-read in print-ospf6.c:ospf6_decode_v3() in OSPFv3 parser

The OSPFv3 parser in tcpdump before 4.9.2 has a buffer over-read in print-ospf6.c:ospf6decodev3...

MaxAge LSA Vulnerability in OSPF Protocol of Multiple Huawei Products Products

Huawei AC6005 and others are products of Huawei, China.Huawei AC6005 is an access control device.CloudEngine 12800 is a data center switch device. A MaxAge LSA vulnerability exists in the OSPF protocol of multiple Huawei products. When the device receives a specific LSA message, the LS Link Statu...

Security Bypass Vulnerabilities in Multiple Cisco Products

Cisco Nexus 7000 Series Switches and so on are the products of the United States Cisco Cisco.Cisco Nexus 7000 Series Switches are 7000 series switches; Cisco Adaptive Security Appliance ASA, Adaptive Security Appliance The Cisco Nexus 7000 Series Switches are 7000 series switches; the Cisco...

CVE-2017-1460

IBM i OSPF 6.1, 7.1, 7.2, and 7.3 is vulnerable when a rogue router spoofs its origin. Routing tables are affected by a missing LSA, which may lead to loss of connectivity. IBM X-Force ID: 128379...

Quagga: OSPFD Potential remote code exec (stack based buffer overflow)

A stack-based buffer overflow flaw was found in the way the Quagga OSPFD daemon handled LSA link-state advertisement packets. A remote attacker could use this flaw to crash the ospfd daemon resulting in denial of service...

Cisco IOS XR Software Denial of Service Vulnerability (CNVD-2016-08560)

Cisco IOS XR Software is the United States Cisco Cisco company's IOS software series including IOS T, IOS S and IOS XR in a fully modular, distributed network operating system. A denial of service vulnerability exists in the implementation of the Open Shortest Path First Link State Advertisement...

Cisco IOS XR Software Open Shortest Path First Link State Advertisement Denial of Service Vulnerability (cisco-sa-20160928-ospf)

A vulnerability in the implementation of Open Shortest Path First OSPF Link State Advertisement LSA functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. Copyright C 2016 Greenbone Networks GmbH Some text descriptions...

Cisco IOS XR Resource Management Error Vulnerability

Cisco IOS XR is the United States Cisco Cisco company's IOS software series in a fully modular, distributed network operating system. A security vulnerability exists in Cisco IOS XR that stems from the program not properly limiting the number of Path Computation Elements PCEs for OSPF LSA opaque...

CVE-2013-5565

The OSPFv3 functionality in Cisco IOS XR 5.1 allows remote attackers to cause a denial of service process crash via a malformed LSA Type-1 packet, aka Bug ID CSCuj82176...

(ospfd): Assertion failure due improper length check for a received LS-Update OSPF packet

Buffer overflow in the ospflsupdlistlsa function in ospfpacket.c in the OSPFv2 implementation in ospfd in Quagga before 0.99.20.1 allows remote attackers to cause a denial of service assertion failure and daemon exit via a Link State Update aka LS Update packet that is smaller than the length...

(ospf6d): Denial of service by decoding malformed Database Description packet headers

The ospf6lsaischanged function in ospf6lsa.c in the OSPFv3 implementation in ospf6d in Quagga before 0.99.19 allows remote attackers to cause a denial of service assertion failure and daemon exit via trailing zero values in the Link State Advertisement LSA header list of an IPv6 Database...

security flaw

Stack-based buffer overflow in the dissectospfv3addressprefix function in the OSPF protocol dissector in Ethereal 0.10.12, and possibly other versions, allows remote attackers to execute arbitrary code via crafted packets...

CVE-2004-1454

Cisco IOS 12.0S, 12.2, and 12.3, with Open Shortest Path First OSPF enabled, allows remote attackers to cause a denial of service device reload via a malformed OSPF packet...