CVE-2013-7313
Juniper Junos through 13.x and JunosE - Denial of Service via Duplicate LSA Link State ID
Title source: llmDescription
The OSPF implementation in Juniper Junos through 13.x, JunosE, and ScreenOS through 6.3.x does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149.
References (2)
Core 2
Core References
US Government Resource x_refsource_confirm
http://www.kb.cert.org/vuls/id/BLUU-97KQ26
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/229804
Scores
EPSS
0.0016
EPSS Percentile
36.6%
Details
Status
published
Products (50)
juniper/junos
4.0
juniper/junos
4.1
juniper/junos
4.2
juniper/junos
4.3
juniper/junos
4.4
juniper/junos
5.0
juniper/junos
5.0r3
juniper/junos
5.0r4
juniper/junos
5.1
juniper/junos
5.2
... and 40 more
Published
Jan 23, 2014
Tracked Since
Feb 18, 2026