Juniper Junos Unnumbered Interface Cache Poisoning Remote DoS and Information Disclosure (JSA10595)

This script is Copyright (C) 2013-2017 Tenable Network Security, Inc.


Synopsis :

The remote device is missing a vendor-supplied security patch.

Description :

According to its self-reported version number, the remote Juniper
Junos device is affected by denial of service and information
disclosure vulnerabilities. An adjacent attacker can poison the ARP
cache and create a bogus forwarding table entry for an IP address,
effectively creating a denial of service for that subscriber or
interface or leading to information disclosure as the router answers
any ARP message from any IP address.

Note that these issues only affect devices that have Proxy ARP enabled
on an unnumbered interface.

See also :

https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10595

Solution :

Apply the relevant Junos software release referenced in Juniper
advisory JSA10595.

Risk factor :

Medium / CVSS Base Score : 6.1
(CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:C)
CVSS Temporal Score : 5.3
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: Junos Local Security Checks

Nessus Plugin ID: 70480 ()

Bugtraq ID: 63391

CVE ID: CVE-2013-6014

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now