CVE-2013-7308

The OSPF implementation on the D-Link DES-3810-28 switch with firmware R2.20.B017 does not consider the possibility of duplicate Link State ID values in Link State Advertisement LSA packets before performing operations on the LSA database, which allows remote attackers to cause a denial of servic...

D-Link多款路由器产品远程安全限制绕过漏洞

BUGTRAQ ID: 65161 CVECAN ID: CVE-2013-7308 Dlink，友讯科技股份有限公司，专注于无线网络和以太网路硬件产品的设计开发。 D-Link DES-3810-28交换机（固件版本R2.20.B017）的OSPF实现中，没有考虑LSA数据库操作之前LSA数据包内存在重复的Link State ID值，这可使远程攻击者通过特制的LSA数据包，利用此漏洞造成拒绝服务（路由中断）或获取敏感的数据包信息。 0 D-Link DES-3810-28 R2.20.B017 厂商补丁： D-Link ------...

CVE-2013-7308

The OSPF implementation on the D-Link DES-3810-28 switch with firmware R2.20.B017 does not consider the possibility of duplicate Link State ID values in Link State Advertisement LSA packets before performing operations on the LSA database, which allows remote attackers to cause a denial of servic...

Design/Logic Flaw

The OSPF implementation on the D-Link DES-3810-28 switch with firmware R2.20.B017 does not consider the possibility of duplicate Link State ID values in Link State Advertisement LSA packets before performing operations on the LSA database, which allows remote attackers to cause a denial of servic...

CVE-2013-7308

The CVE-2013-0149 family covers OSPF LSA handling flaws across multiple vendors where duplicates of Link State ID in LSAs are not validated before LSA database operations, enabling DoS or information disclosure via crafted LSAs. Concrete examples from connected docs include: Cisco IOS/IOS-XE/NX-O...

CVE-2013-4707

The SSH implementation on D-Link Japan DES-3810 devices with firmware before R2.20.011 allows remote authenticated users to cause a denial of service device hang by leveraging login access...

Design/Logic Flaw

The SSH implementation on D-Link Japan DES-3810 devices with firmware before R2.20.011 allows remote authenticated users to cause a denial of service device hang by leveraging login access...

CVE-2013-4707

CVE-2013-4707 affects D-Link DES-3810 Series: SSH implementation flaw allows a remote authenticated user to cause a denial-of-service (device hang) by leveraging login access. Affected firmware: before R2.20.011. Mitigation: upgrade to R2.20.011 or later. The vulnerability is confirmed in multipl...

CVE-2013-4707

The SSH implementation on D-Link Japan DES-3810 devices with firmware before R2.20.011 allows remote authenticated users to cause a denial of service device hang by leveraging login access...

D-Link DES-3810 Series vulnerable to denial-of-service (DoS)

Overview DES-3810 Series provided by D-Link Japan contains a denial-of-service DoS vulnerability due to an issue in SSH implementation. Hisashi Kojima and Masahiro Nakada of Fujitsu Laboratories Ltd. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information...

JVN#70245052: D-Link DES-3810 Series vulnerable to denial-of-service (DoS)

DES-3810 Series provided by D-Link Japan contains a denial-of-service DoS vulnerability due to an issue in SSH implementation. Impact A user who can login with SSH may cause the product to stop responding. Solution Update the Firmware Update the firmware to version R2.20.011 or later according to...