CVE-2013-7311

Name of the Vulnerable Software and Affected Versions Check Point Gaia versions R75.X through R76 Check Point IPSO OS versions 6.2 R75.X through R76

Description The issue is related to the implementation of the OSPF protocol in the Check Point Gaia operating system, which does not account for duplicate Link State ID values in LSA packets. This can be exploited by sending specially crafted LSA packets, potentially allowing an attacker to cause a denial of service or obtain sensitive information.

Recommendations For Check Point Gaia versions R75.X through R76, consider disabling the OSPF protocol until a patch is available. For Check Point IPSO OS versions 6.2 R75.X through R76, restrict access to the LSA database to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.