var-201401-0488
Vulnerability from variot
The OSPF implementation on Yamaha routers does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149. Yamaha routers is a router device. Multiple Yamaha products are prone to a remote security-bypass vulnerability due to an error in the OSPF protocol specification. Exploiting this issue could allow an attacker to bypass certain security restrictions and take full control of the OSPF AS domain routing table, blackholed traffic, and intercepted traffic. This may aid in further attacks
Show details on source website{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", affected_products: { "@id": "https://www.variotdbs.pl/ref/affected_products", }, configurations: { "@id": "https://www.variotdbs.pl/ref/configurations", }, credits: { "@id": "https://www.variotdbs.pl/ref/credits", }, cvss: { "@id": "https://www.variotdbs.pl/ref/cvss/", }, description: { "@id": "https://www.variotdbs.pl/ref/description/", }, exploit_availability: { "@id": "https://www.variotdbs.pl/ref/exploit_availability/", }, external_ids: { "@id": "https://www.variotdbs.pl/ref/external_ids/", }, iot: { "@id": "https://www.variotdbs.pl/ref/iot/", }, iot_taxonomy: { "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/", }, patch: { "@id": "https://www.variotdbs.pl/ref/patch/", }, problemtype_data: { "@id": "https://www.variotdbs.pl/ref/problemtype_data/", }, references: { "@id": "https://www.variotdbs.pl/ref/references/", }, sources: { "@id": "https://www.variotdbs.pl/ref/sources/", }, sources_release_date: { "@id": "https://www.variotdbs.pl/ref/sources_release_date/", }, sources_update_date: { "@id": "https://www.variotdbs.pl/ref/sources_update_date/", }, threat_type: { "@id": "https://www.variotdbs.pl/ref/threat_type/", }, title: { "@id": "https://www.variotdbs.pl/ref/title/", }, type: { "@id": "https://www.variotdbs.pl/ref/type/", }, }, "@id": "https://www.variotdbs.pl/vuln/VAR-201401-0488", affected_products: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { model: "rt250i", scope: "eq", trust: 1.6, vendor: "yamaha", version: null, }, { model: "rtx3000", scope: "eq", trust: 1.6, vendor: "yamaha", version: null, }, { model: "fwx120", scope: "eq", trust: 1.6, vendor: "yamaha", version: null, }, { model: "rt300i", scope: "eq", trust: 1.6, vendor: "yamaha", version: null, }, { model: "rtx1200", scope: "eq", trust: 1.6, vendor: "yamaha", version: null, }, { model: "rtx1500", scope: "eq", trust: 1.6, vendor: "yamaha", version: null, }, { model: "rtx1100", scope: "eq", trust: 1.6, vendor: "yamaha", version: null, }, { model: "srt100", scope: "eq", trust: 1.6, vendor: "yamaha", version: null, }, { model: "rt107e", scope: "eq", trust: 1.6, vendor: "yamaha", version: null, }, { model: "rtx810", scope: "eq", trust: 1.6, vendor: "yamaha", version: null, }, { model: "rtx810", scope: null, trust: 1.4, vendor: "yamaha", version: null, }, { model: "fwx120", scope: null, trust: 1.4, vendor: "yamaha", version: null, }, { model: "rtx1000", scope: "eq", trust: 1, vendor: "yamaha", version: null, }, { model: "rt140", scope: "eq", trust: 1, vendor: "yamaha", version: null, }, { model: "rt105", scope: "eq", trust: 1, vendor: "yamaha", version: null, }, { model: "rtx2000", scope: "eq", trust: 1, vendor: "yamaha", version: null, }, { model: "rt105 series", scope: null, trust: 0.8, vendor: "yamaha", version: null, }, { model: "rt107e", scope: null, trust: 0.8, vendor: "yamaha", version: null, }, { model: "rt140 series", scope: null, trust: 0.8, vendor: "yamaha", version: null, }, { model: "rt250i", scope: null, trust: 0.8, vendor: "yamaha", version: null, }, { model: "rt300i", scope: null, trust: 0.8, vendor: "yamaha", version: null, }, { model: "rtx1000", scope: null, trust: 0.8, vendor: "yamaha", version: null, }, { model: "rtx1100", scope: null, trust: 0.8, vendor: "yamaha", version: null, }, { model: "rtx1200", scope: null, trust: 0.8, vendor: "yamaha", version: null, }, { model: "rtx1500", scope: null, trust: 0.8, vendor: "yamaha", version: null, }, { model: "rtx2000", scope: null, trust: 0.8, vendor: "yamaha", version: null, }, { model: "rtx3000", scope: null, trust: 0.8, vendor: "yamaha", version: null, }, { model: "srt100", scope: null, trust: 0.8, vendor: "yamaha", version: null, }, { model: "rtx3000/rtx2000/rtx1500/rtx1200/rtx1100/rtx1000", scope: null, trust: 0.6, vendor: "yamaha", version: null, }, { model: "rt250i/rt300i/rt107e/rt105/rt140", scope: null, trust: 0.6, vendor: "yamaha", version: null, }, { model: "vyatta vrouter software", scope: "eq", trust: 0.3, vendor: "brocade", version: "6.6", }, { model: "vyatta vrouter", scope: "eq", trust: 0.3, vendor: "brocade", version: "0", }, ], sources: [ { db: "CNVD", id: "CNVD-2014-00596", }, { db: "BID", id: "65163", }, { db: "JVNDB", id: "JVNDB-2013-005905", }, { db: "CNNVD", id: "CNNVD-201401-493", }, { db: "NVD", id: "CVE-2013-7310", }, ], }, configurations: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/configurations#", children: { "@container": "@list", }, cpe_match: { "@container": "@list", }, data: { "@container": "@list", }, nodes: { "@container": "@list", }, }, data: [ { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:yamaha:rt105:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:h:yamaha:rt140:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:h:yamaha:rt250i:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:h:yamaha:fwx120:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:h:yamaha:srt100:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:h:yamaha:rt300i:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:h:yamaha:rtx1200:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:h:yamaha:rtx1100:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:h:yamaha:rtx1000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:h:yamaha:rtx3000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:h:yamaha:rtx810:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:h:yamaha:rtx1500:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:h:yamaha:rt107e:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:h:yamaha:rtx2000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, ], }, ], sources: [ { db: "NVD", id: "CVE-2013-7310", }, ], }, credits: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/credits#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Dr. Gabi Nakibly from Rafael Advanced Defense Systems as joint work he conducted with Eitan Menahem, Yuval Elovici and Ariel Waizel of Telekom Innovation Laboratories at Ben Gurion University", sources: [ { db: "BID", id: "65163", }, ], trust: 0.3, }, cve: "CVE-2013-7310", cvss: { "@context": { cvssV2: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2", }, cvssV3: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/", }, severity: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#", }, "@id": "https://www.variotdbs.pl/ref/cvss/severity", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { cvssV2: [ { acInsufInfo: false, accessComplexity: "MEDIUM", accessVector: "ADJACENT_NETWORK", authentication: "NONE", author: "NVD", availabilityImpact: "PARTIAL", baseScore: 5.4, confidentialityImpact: "PARTIAL", exploitabilityScore: 5.5, impactScore: 6.4, integrityImpact: "PARTIAL", obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "MEDIUM", trust: 1, userInteractionRequired: false, vectorString: "AV:A/AC:M/Au:N/C:P/I:P/A:P", version: "2.0", }, { acInsufInfo: null, accessComplexity: "Medium", accessVector: "Adjacent Network", authentication: "None", author: "NVD", availabilityImpact: "Partial", baseScore: 5.4, confidentialityImpact: "Partial", exploitabilityScore: null, id: "CVE-2013-7310", impactScore: null, integrityImpact: "Partial", obtainAllPrivilege: null, obtainOtherPrivilege: null, obtainUserPrivilege: null, severity: "Medium", trust: 0.8, userInteractionRequired: null, vectorString: "AV:A/AC:M/Au:N/C:P/I:P/A:P", version: "2.0", }, { accessComplexity: "MEDIUM", accessVector: "ADJACENT_NETWORK", authentication: "NONE", author: "CNVD", availabilityImpact: "PARTIAL", baseScore: 5.4, confidentialityImpact: "PARTIAL", exploitabilityScore: 5.5, id: "CNVD-2014-00596", impactScore: 6.4, integrityImpact: "PARTIAL", severity: "MEDIUM", trust: 0.6, vectorString: "AV:A/AC:M/Au:N/C:P/I:P/A:P", version: "2.0", }, { accessComplexity: "MEDIUM", accessVector: "ADJACENT_NETWORK", authentication: "NONE", author: "VULHUB", availabilityImpact: "PARTIAL", baseScore: 5.4, confidentialityImpact: "PARTIAL", exploitabilityScore: 5.5, id: "VHN-67312", impactScore: 6.4, integrityImpact: "PARTIAL", severity: "MEDIUM", trust: 0.1, vectorString: "AV:A/AC:M/AU:N/C:P/I:P/A:P", version: "2.0", }, ], cvssV3: [], severity: [ { author: "NVD", id: "CVE-2013-7310", trust: 1.8, value: "MEDIUM", }, { author: "CNVD", id: "CNVD-2014-00596", trust: 0.6, value: "MEDIUM", }, { author: "CNNVD", id: "CNNVD-201401-493", trust: 0.6, value: "MEDIUM", }, { author: "VULHUB", id: "VHN-67312", trust: 0.1, value: "MEDIUM", }, ], }, ], sources: [ { db: "CNVD", id: "CNVD-2014-00596", }, { db: "VULHUB", id: "VHN-67312", }, { db: "JVNDB", id: "JVNDB-2013-005905", }, { db: "CNNVD", id: "CNNVD-201401-493", }, { db: "NVD", id: "CVE-2013-7310", }, ], }, description: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "The OSPF implementation on Yamaha routers does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149. Yamaha routers is a router device. Multiple Yamaha products are prone to a remote security-bypass vulnerability due to an error in the OSPF protocol specification. \nExploiting this issue could allow an attacker to bypass certain security restrictions and take full control of the OSPF AS domain routing table, blackholed traffic, and intercepted traffic. This may aid in further attacks", sources: [ { db: "NVD", id: "CVE-2013-7310", }, { db: "JVNDB", id: "JVNDB-2013-005905", }, { db: "CNVD", id: "CNVD-2014-00596", }, { db: "BID", id: "65163", }, { db: "VULHUB", id: "VHN-67312", }, ], trust: 2.52, }, external_ids: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { db: "CERT/CC", id: "VU#229804", trust: 3.4, }, { db: "NVD", id: "CVE-2013-7310", trust: 3.4, }, { db: "JVN", id: "JVNVU96465452", trust: 0.8, }, { db: "JVNDB", id: "JVNDB-2013-005905", trust: 0.8, }, { db: "CNNVD", id: "CNNVD-201401-493", trust: 0.7, }, { db: "CNVD", id: "CNVD-2014-00596", trust: 0.6, }, { db: "CERT/CC", id: "HTTP://WWW.KB.CERT.ORG/VULS/ID/CKIG-9AAHPZ", trust: 0.6, }, { db: "BID", id: "65163", trust: 0.4, }, { db: "VULHUB", id: "VHN-67312", trust: 0.1, }, ], sources: [ { db: "CNVD", id: "CNVD-2014-00596", }, { db: "VULHUB", id: "VHN-67312", }, { db: "BID", id: "65163", }, { db: "JVNDB", id: "JVNDB-2013-005905", }, { db: "CNNVD", id: "CNNVD-201401-493", }, { db: "NVD", id: "CVE-2013-7310", }, ], }, id: "VAR-201401-0488", iot: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: true, sources: [ { db: "CNVD", id: "CNVD-2014-00596", }, { db: "VULHUB", id: "VHN-67312", }, ], trust: 1.4313889, }, iot_taxonomy: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { category: [ "Network device", ], sub_category: null, trust: 0.6, }, ], sources: [ { db: "CNVD", id: "CNVD-2014-00596", }, ], }, last_update_date: "2024-04-19T22:49:59.162000Z", patch: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { title: "FCの記述の不整合を起因とするOSPFv2の脆弱性(VU#229804)について", trust: 0.8, url: "http://www.rtpro.yamaha.co.jp/rt/faq/security/vu96465452.html", }, { title: "Yamaha's various routers OSPF routing protocol implementation design vulnerability patch", trust: 0.6, url: "https://www.cnvd.org.cn/patchinfo/show/43154", }, ], sources: [ { db: "CNVD", id: "CNVD-2014-00596", }, { db: "JVNDB", id: "JVNDB-2013-005905", }, ], }, problemtype_data: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { problemtype: "NVD-CWE-Other", trust: 1, }, { problemtype: "CWE-Other", trust: 0.8, }, ], sources: [ { db: "JVNDB", id: "JVNDB-2013-005905", }, { db: "NVD", id: "CVE-2013-7310", }, ], }, references: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { trust: 3.4, url: "http://www.kb.cert.org/vuls/id/ckig-9aahpz", }, { trust: 3.1, url: "http://www.kb.cert.org/vuls/id/229804", }, { trust: 2.3, url: "http://www.rtpro.yamaha.co.jp/rt/faq/security/vu96465452.html", }, { trust: 1.4, url: "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-7310", }, { trust: 0.8, url: "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-7310", }, { trust: 0.8, url: "http://jvn.jp/vu/jvnvu96465452/", }, { trust: 0.3, url: "http://jp.yamaha.com/", }, { trust: 0.3, url: "http://www.kb.cert.org/vuls/id/bluu-98ms25", }, ], sources: [ { db: "CNVD", id: "CNVD-2014-00596", }, { db: "VULHUB", id: "VHN-67312", }, { db: "BID", id: "65163", }, { db: "JVNDB", id: "JVNDB-2013-005905", }, { db: "CNNVD", id: "CNNVD-201401-493", }, { db: "NVD", id: "CVE-2013-7310", }, ], }, sources: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", data: { "@container": "@list", }, }, data: [ { db: "CNVD", id: "CNVD-2014-00596", }, { db: "VULHUB", id: "VHN-67312", }, { db: "BID", id: "65163", }, { db: "JVNDB", id: "JVNDB-2013-005905", }, { db: "CNNVD", id: "CNNVD-201401-493", }, { db: "NVD", id: "CVE-2013-7310", }, ], }, sources_release_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", data: { "@container": "@list", }, }, data: [ { date: "2014-01-27T00:00:00", db: "CNVD", id: "CNVD-2014-00596", }, { date: "2014-01-23T00:00:00", db: "VULHUB", id: "VHN-67312", }, { date: "2014-01-23T00:00:00", db: "BID", id: "65163", }, { date: "2014-01-27T00:00:00", db: "JVNDB", id: "JVNDB-2013-005905", }, { date: "2014-01-27T00:00:00", db: "CNNVD", id: "CNNVD-201401-493", }, { date: "2014-01-23T17:55:05.277000", db: "NVD", id: "CVE-2013-7310", }, ], }, sources_update_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", data: { "@container": "@list", }, }, data: [ { date: "2014-01-26T00:00:00", db: "CNVD", id: "CNVD-2014-00596", }, { date: "2014-01-23T00:00:00", db: "VULHUB", id: "VHN-67312", }, { date: "2014-01-23T00:00:00", db: "BID", id: "65163", }, { date: "2014-01-27T00:00:00", db: "JVNDB", id: "JVNDB-2013-005905", }, { date: "2014-01-27T00:00:00", db: "CNNVD", id: "CNNVD-201401-493", }, { date: "2014-01-23T19:39:24.870000", db: "NVD", id: "CVE-2013-7310", }, ], }, threat_type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/threat_type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "specific network environment", sources: [ { db: "CNNVD", id: "CNNVD-201401-493", }, ], trust: 0.6, }, title: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Yamaha Router OSPF Denial of service in implementation (DoS) Vulnerability", sources: [ { db: "JVNDB", id: "JVNDB-2013-005905", }, ], trust: 0.8, }, type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "other", sources: [ { db: "CNNVD", id: "CNNVD-201401-493", }, ], trust: 0.6, }, }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.