Juniper JUNOS BGP and IPv6 Bugs Let Remote Users Deny Service
|
|
SecurityTracker Alert ID: 1019100
|
|
SecurityTracker URL: http://securitytracker.com/id?1019100
|
|
CVE Reference: CVE-2007-6372
(Links to External Site)
|
|
OSVDB Reference: 39157
, 39158
(Links to External Site)
|
Updated: Dec 17 2007
|
Original Entry Date: Dec 14 2007
|
Impact: Denial of service via network
|
Fix Available: Yes
Vendor Confirmed: Yes
|
Description: A vulnerability was reported in JUNOS. A remote user can cause denial of service conditions.
A remote user can send specially crafted BGP messages to cause the target interface to flap.
A remote user can send specially crafted IPv6 packets to trigger a memory leak in the kernel and cause the target router to crash.
|
Impact: A remote user can cause denial of service conditions.
|
Solution: The vendor has reportedly issued a fix.
No public advisory was available at the time of this entry.
The Juniper technical note
for the BGP vulnerability is available to registered customers at:
https://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2007-12-008&viewMod
e=view
|
Vendor URL: www.juniper.net/ (Links to External Site)
|
Cause: Not specified
|
|
Message History:
None.
|
Source Message Contents
|
Date: Thu, 13 Dec 2007 23:14:31 -0500
Subject: Juniper JUNOS
|
https://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2007-12-008&
viewMode=view
|
|
