ID de Prueba:	1.3.6.1.4.1.25623.1.0.105926
Categoría:	JunOS Local Security Checks
Título:	Junos RSVP Denial of Service Vulnerability
Resumen:	JunOS is prone to a Denial of Service vulnerability
Descripción:	Summary: JunOS is prone to a Denial of Service vulnerability Vulnerability Insight: Receipt of a crafted or malformed RSVP packet may cause the routing protocol daemon to hang or crash. This issue only occurs during processing of RSVP PATH messages. If RSVP is not enabled on an interface, then the issue cannot be triggered via that interface. Vulnerability Impact: An attacker can cause the routing protocol daemon to hang or crash. When rpd is unavailable, routing updates cannot be processed which can lead to an extended network outage. Affected Software/OS: Junos OS 11.4, 12.1, 12.2, 12.3, 13.1, 13.2 with support for RSVP enabled. Solution: New builds of Junos OS software are available from Juniper. As a workaround enable RSVP only on trusted interfaces as required for MPLS. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-6378 BugTraq ID: 70363 http://www.securityfocus.com/bid/70363 http://www.securitytracker.com/id/1031008 XForce ISS Database: juniper-junos-cve20146378-dos(96906) https://exchange.xforce.ibmcloud.com/vulnerabilities/96906
Copyright	This script is Copyright (C) 2014 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.