5 matches found
CVE-2013-7308
The OSPF implementation on the D-Link DES-3810-28 switch with firmware R2.20.B017 does not consider the possibility of duplicate Link State ID values in Link State Advertisement LSA packets before performing operations on the LSA database, which allows remote attackers to cause a denial of servic...
D-Link多款路由器产品远程安全限制绕过漏洞
BUGTRAQ ID: 65161 CVECAN ID: CVE-2013-7308 Dlink,友讯科技股份有限公司,专注于无线网络和以太网路硬件产品的设计开发。 D-Link DES-3810-28交换机(固件版本R2.20.B017)的OSPF实现中,没有考虑LSA数据库操作之前LSA数据包内存在重复的Link State ID值,这可使远程攻击者通过特制的LSA数据包,利用此漏洞造成拒绝服务(路由中断)或获取敏感的数据包信息。 0 D-Link DES-3810-28 R2.20.B017 厂商补丁: D-Link ------...
CVE-2013-7308
The OSPF implementation on the D-Link DES-3810-28 switch with firmware R2.20.B017 does not consider the possibility of duplicate Link State ID values in Link State Advertisement LSA packets before performing operations on the LSA database, which allows remote attackers to cause a denial of servic...
Design/Logic Flaw
The OSPF implementation on the D-Link DES-3810-28 switch with firmware R2.20.B017 does not consider the possibility of duplicate Link State ID values in Link State Advertisement LSA packets before performing operations on the LSA database, which allows remote attackers to cause a denial of servic...
CVE-2013-7308
The CVE-2013-0149 family covers OSPF LSA handling flaws across multiple vendors where duplicates of Link State ID in LSAs are not validated before LSA database operations, enabling DoS or information disclosure via crafted LSAs. Concrete examples from connected docs include: Cisco IOS/IOS-XE/NX-O...