CVE-2017-3224

Name of the Vulnerable Software and Affected Versions: Open Shortest Path First (OSPF) protocol implementations (affected versions not specified)

Description: The issue arises from improper determination of Link State Advertisement (LSA) recency for LSAs with MaxSequenceNumber. According to the protocol, when sequence numbers are the same, the LSA with the larger checksum is considered more recent. An attacker can craft a LSA with MaxSequenceNumber and invalid links, resulting in a larger checksum, which will not be flushed from the Link State Database (LSDB). This can lead to the erasure or alteration of routing tables, causing a denial of service condition or re-routing of traffic.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.