Vulnerability Details CVE-2006-5425
XORP (eXtensible Open Router Platform) 1.2 and 1.3 allows remote attackers to cause a denial of service (application crash) via an Open Shortest Path First (OSPF) Link State Advertisement (LSA) with an invalid LSA length field.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.013
EPSS Ranking 78.8%
CVSS Severity
CVSS v2 Score 5.0
References
- http://labs.musecurity.com/advisories/MU-200610-01.txt
- http://marc.info/?l=full-disclosure&m=116115975806681&w=2
- http://secunia.com/advisories/22462
- http://securitytracker.com/id?1017079
- http://www.securityfocus.com/bid/20597
- http://www.vupen.com/english/advisories/2006/4107
- http://www.xorp.org/advisories/XORP_SA_06:01.ospf.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29658
- http://labs.musecurity.com/advisories/MU-200610-01.txt
- http://marc.info/?l=full-disclosure&m=116115975806681&w=2
- http://secunia.com/advisories/22462
- http://securitytracker.com/id?1017079
- http://www.securityfocus.com/bid/20597
- http://www.vupen.com/english/advisories/2006/4107
- http://www.xorp.org/advisories/XORP_SA_06:01.ospf.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29658
Products affected by CVE-2006-5425
-
cpe:2.3:a:xorp:extensible_open_router_platform:1.2
-
cpe:2.3:a:xorp:extensible_open_router_platform:1.3