XORP (eXtensible Open Router Platform) 1.2 and 1.3 allows remote attackers to cause a denial of service (application crash) via an Open Shortest Path First (OSPF) Link State Advertisement (LSA) with an invalid LSA length field.
https://exchange.xforce.ibmcloud.com/vulnerabilities/29658
http://www.xorp.org/advisories/XORP_SA_06:01.ospf.txt
http://www.vupen.com/english/advisories/2006/4107
http://www.securityfocus.com/bid/20597
http://securitytracker.com/id?1017079
http://secunia.com/advisories/22462