Anfälligkeitssuche        Suche in 187964 CVE Beschreibungen
und 85075 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.105927
Kategorie:JunOS Local Security Checks
Titel:Junos FPC Denial of Service Vulnerability
Zusammenfassung:JunOS is prone to a Denial of Service Vulnerability.
Beschreibung:Summary:
JunOS is prone to a Denial of Service Vulnerability.

Vulnerability Insight:
Traffic between the RE and transit interfaces is carried over an
internal network between the PFEs and REs. Some REs use em interfaces (usually, em0 and em1) to connect
to this network. Receipt of a carefully crafted set of fragmented packets, destined to the router, can
cause the em driver to become permanently blocked when trying to formulate a reply.

Vulnerability Impact:
An attacker can cause the RE to be unable to communicate over
the private network that connects the FPCs and REs eventually causing all FPCs to go offline and
stay offline. Systems with redundant REs will failover, but would then be subject to the same issue.

Affected Software/OS:
Junos OS 11.4, 12.1, 12.2, 12.3, 13.1, 13.2

Solution:
New builds of Junos OS software are available from Juniper. As
a workaround filter fragmented packets destined to the router.

CVSS Score:
7.8

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2014-6380
BugTraq ID: 70369
http://www.securityfocus.com/bid/70369
http://www.securitytracker.com/id/1031011
XForce ISS Database: juniper-junos-cve20146380-dos(96904)
https://exchange.xforce.ibmcloud.com/vulnerabilities/96904
CopyrightThis script is Copyright (C) 2014 Greenbone Networks GmbH

Dies ist nur einer von 85075 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.