This script is Copyright (C) 2011-2013 Tenable Network Security, Inc.
The remote router has a denial of service vulnerability.
According to its self-reported version number, the remote Juniper
router is running a version of Junos that is affected by a
denial of service vulnerability. Sending an ICMP ping with
the record-route or timestamp options can crash an L3VPN PE
router with either of the following configurations :
- Point-to-Multipoint LSPs that are used as next hops
in configuration of static routes to customers' networks
- The 'l3vpn-composite-nexthop' and 'indirect-next-hop'
routing-options are enabled
A remote, unauthenticated attacker could exploit this to crash
See also :
Apply the relevant Junos upgrade referenced in Juniper advisory
Risk factor :
High / CVSS Base Score : 7.8
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now