CVE-2013-7313

The OSPF implementation in Juniper Junos through 13.x, JunosE, and ScreenOS through 6.3.x does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149.

Affected Software

Name	Vendor	Start Version	End Version
Junos	Juniper	4.0 (including)	4.0 (including)
Junos	Juniper	4.1 (including)	4.1 (including)
Junos	Juniper	4.2 (including)	4.2 (including)
Junos	Juniper	4.3 (including)	4.3 (including)
Junos	Juniper	4.4 (including)	4.4 (including)
Junos	Juniper	5.0 (including)	5.0 (including)
Junos	Juniper	5.0r3 (including)	5.0r3 (including)
Junos	Juniper	5.0r4 (including)	5.0r4 (including)
Junos	Juniper	5.1 (including)	5.1 (including)
Junos	Juniper	5.2 (including)	5.2 (including)
Junos	Juniper	5.3 (including)	5.3 (including)
Junos	Juniper	5.4 (including)	5.4 (including)
Junos	Juniper	5.5 (including)	5.5 (including)
Junos	Juniper	5.6 (including)	5.6 (including)
Junos	Juniper	5.7 (including)	5.7 (including)
Junos	Juniper	6.0 (including)	6.0 (including)
Junos	Juniper	6.1 (including)	6.1 (including)
Junos	Juniper	6.2 (including)	6.2 (including)
Junos	Juniper	6.3 (including)	6.3 (including)
Junos	Juniper	6.4 (including)	6.4 (including)
Junos	Juniper	7.0 (including)	7.0 (including)
Junos	Juniper	7.1 (including)	7.1 (including)
Junos	Juniper	7.2 (including)	7.2 (including)
Junos	Juniper	7.3 (including)	7.3 (including)
Junos	Juniper	7.4 (including)	7.4 (including)
Junos	Juniper	7.5 (including)	7.5 (including)
Junos	Juniper	7.6 (including)	7.6 (including)
Junos	Juniper	8.0 (including)	8.0 (including)
Junos	Juniper	8.1 (including)	8.1 (including)
Junos	Juniper	8.2 (including)	8.2 (including)
Junos	Juniper	8.3 (including)	8.3 (including)
Junos	Juniper	8.4 (including)	8.4 (including)
Junos	Juniper	9.0 (including)	9.0 (including)
Junos	Juniper	9.1 (including)	9.1 (including)
Junos	Juniper	9.2 (including)	9.2 (including)
Junos	Juniper	9.4 (including)	9.4 (including)
Junos	Juniper	9.5 (including)	9.5 (including)
Junos	Juniper	9.6 (including)	9.6 (including)
Junos	Juniper	10.0 (including)	10.0 (including)
Junos	Juniper	10.1 (including)	10.1 (including)
Junos	Juniper	10.2 (including)	10.2 (including)
Junos	Juniper	10.3 (including)	10.3 (including)
Junos	Juniper	10.4 (including)	10.4 (including)
Junos	Juniper	10.4r (including)	10.4r (including)
Junos	Juniper	10.4s (including)	10.4s (including)
Junos	Juniper	11.0 (including)	11.0 (including)
Junos	Juniper	11.1 (including)	11.1 (including)
Junos	Juniper	11.2 (including)	11.2 (including)
Junos	Juniper	11.3 (including)	11.3 (including)
Junos	Juniper	11.4 (including)	11.4 (including)
Junos	Juniper	11.4x27 (including)	11.4x27 (including)
Junos	Juniper	12.1 (including)	12.1 (including)
Junos	Juniper	12.1r (including)	12.1r (including)
Junos	Juniper	12.1x44 (including)	12.1x44 (including)
Junos	Juniper	12.1x45 (including)	12.1x45 (including)
Junos	Juniper	12.1x46 (including)	12.1x46 (including)
Junos	Juniper	12.2 (including)	12.2 (including)
Junos	Juniper	12.3 (including)	12.3 (including)
Junos	Juniper	13.1 (including)	13.1 (including)
Junos	Juniper	13.2 (including)	13.2 (including)
Junos	Juniper	13.3 (including)	13.3 (including)
Junose	Juniper	*	*
Screenos	Juniper	*	6.3.0 (including)
Screenos	Juniper	5.4.0 (including)	5.4.0 (including)
Screenos	Juniper	6.0.0 (including)	6.0.0 (including)
Screenos	Juniper	6.1.0 (including)	6.1.0 (including)
Screenos	Juniper	6.2.0 (including)	6.2.0 (including)

NVD	https://nvd.nist.gov/vuln/detail/CVE-2013-7313
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html

Affected Software

References