Juniper ScreenOS < 6.3.0r20 L2TP DoS (JSA10704)

This script is Copyright (C) 2015-2017 Tenable Network Security, Inc.


Synopsis :

The remote host is affected by a denial of service vulnerability.

Description :

The remote host is running a version of Juniper ScreenOS prior to
6.3.0r20. It is, therefore, affected by a denial of service
vulnerability related to the handling of L2TP packets. An
unauthenticated, remote attacker can exploit this, via specially
crafted L2TP packet, to cause the system to reboot.

See also :

https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10704

Solution :

Upgrade to Juniper ScreenOS 6.3.0r20 or later.

Risk factor :

High / CVSS Base Score : 7.8
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)

Family: Firewalls

Nessus Plugin ID: 86610 ()

Bugtraq ID:

CVE ID: CVE-2015-7750

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now