Anfälligkeitssuche        Suche in 187964 CVE Beschreibungen
und 85075 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.106753
Kategorie:JunOS Local Security Checks
Titel:Junos LDP DoS Vulnerability
Zusammenfassung:Junos OS is prone to denial of service vulnerability when receiving crafted;LDP packets.
Beschreibung:Summary:
Junos OS is prone to denial of service vulnerability when receiving crafted
LDP packets.

Vulnerability Insight:
A specific LDP packet destined to the RE (Routing Engine) will consume a
small amount of the memory allocated for the rpd process. Over time, repeatedly receiving this type of LDP
packet(s) will cause the memory to exhaust and the rpd process to crash and restart. It is not possible to free
up the memory that has been consumed without restarting the rpd process. This issue affects Junos OS based
devices with either IPv4 or IPv6 LDP enabled via the [protocols ldp] configuration. The interface on which the
packet arrives needs to have LDP enabled.

Vulnerability Impact:
An attacker may cause a denial of service condition.

Affected Software/OS:
Junos OS 13.3, 14.1, 14.2, 15.1 and 16.1

Solution:
New builds of Junos OS software are available from Juniper. As a
workaround use access lists or firewall filters to limit access to the device via LDP only from trusted networks
or hosts, or enable MD5 authentication on all authorized LDP sessions.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:L/Au:S/C:N/I:N/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2017-2312
BugTraq ID: 97611
http://www.securityfocus.com/bid/97611
http://www.securitytracker.com/id/1038252
CopyrightThis script is Copyright (C) 2017 Greenbone Networks GmbH

Dies ist nur einer von 85075 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.