5 matches found
Security Bulletin: Vulnerability in OSPFv2 Routing Protocol Used in IBM System Networking Ethernet Switches (CVE-2013-5385)
Abstract Many IBM System Networking Ethernet switches use the OSPFv2 routing protocol, which has an ambiguity that can be exploited to allow network traffic to be black-holed and/or redirected. Remediation for this vulnerability consists of updating the IBM Networking Operating System NOS running...
Security Bulletin: Vulnerability in OSPFv2 Routing Protocol Used in IBM i Operating System (CVE-2013-0149 and CVE-2013-5385)
Problem : The OSPFv2 routing protocol specified in RFC 2328 has an ambiguity that can be exploited and allow for traffic to be black-holed and/or redirected. A PTF is provided. Resolving The Problem VULNERABILITY DETAILS: DESCRIPTION: A potential protocol vulnerability has been identified in the...
CVE-2013-5385
The OSPF implementation in IBM i 6.1 and 7.1, in z/OS on zSeries servers, and in Networking Operating System aka NOS, formerly BLADE Operating System does not properly validate Link State Advertisement LSA type 1 packets before performing operations on the LSA database, which allows remote...
CVE-2013-5385
The OSPF implementation in IBM i 6.1 and 7.1, in z/OS on zSeries servers, and in Networking Operating System aka NOS, formerly BLADE Operating System does not properly validate Link State Advertisement LSA type 1 packets before performing operations on the LSA database, which allows remote...
CVE-2013-5385
The CVE-2013-5385 issue concerns OSPFv2 on IBM System Networking NOS (and related IBM i platforms) where OSPFv2 LSA type 1 packets are not properly validated before LSA-database operations. IBM and related advisories describe that remote attackers could trigger routing disruption or leak sensitiv...