Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The OSPF implementation on the D-Link DES-3810-28 switch with firmware R2.20.B017 does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
D-Link DES-3810-28 Switch OSPF 安全漏洞
Vulnerability Description
D-Link DES-3810-28 Switch是友讯(D-Link)公司的一款网管型交换机产品。 使用R2.20.B017版本固件的D-Link DES-3810-28交换机中的OSPF实现过程中存在安全漏洞,该漏洞源于在LSA数据库上执行操作之前,程序没有考虑Link State Advertisement中Link State ID值存在副本的可能性。远程攻击者可借助特制的LSA数据包利用该漏洞导致拒绝服务(路由损坏)或获取敏感数据包信息。
CVSS Information
N/A
Vulnerability Type
N/A