[afnog] Open Shortest Path First (OSPF) protocol implementations may improperly determine LSA recency

Mark Tinka mark.tinka at seacom.mu
Sat Jul 29 08:51:26 UTC 2017



On 28/Jul/17 19:41, Jean-Robert Hountomey wrote:

> Overview
> Open Shortest Path First (OSPF) protocol implementations may improperly determine Link State Advertisement (LSA) recency for LSAs with MaxSequenceNumber. Attackers with the ability to transmit messages from a routing domain router may send specially crafted OSPF messages to poison routing tables within the domain.
> more at: http://www.kb.cert.org/vuls/id/793496

Makes a case for IS-IS, in this particular instance.

Mark.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.afnog.org/pipermail/afnog/attachments/20170729/4777528e/attachment-0001.html>


More information about the afnog mailing list