CVE-2013-7307
First published: Thu Jan 23 2014(Updated: )
The OSPF implementation on the Brocade Vyatta vRouter with software before 6.6R1 does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Brocade Vyatta vRouter | <=6.6 | |
| Brocade Vyatta 5400 vRouter |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2013-7307?
The severity of CVE-2013-7307 is classified as high, as it can lead to a denial of service.
How do I fix CVE-2013-7307?
To fix CVE-2013-7307, upgrade the Brocade Vyatta vRouter software to version 6.6R1 or later.
What type of vulnerability is CVE-2013-7307?
CVE-2013-7307 is a denial of service vulnerability in the OSPF implementation of the Brocade Vyatta vRouter.
Which products are affected by CVE-2013-7307?
CVE-2013-7307 affects the Brocade Vyatta vRouter software versions prior to 6.6R1.
Can CVE-2013-7307 be exploited remotely?
Yes, CVE-2013-7307 can be exploited remotely by attackers to cause a denial of service.
- agent/type
- agent/references
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/brocade
- canonical/brocade vyatta vrouter
- version/brocade vyatta vrouter/6.6
- canonical/brocade vyatta 5400 vrouter