Juniper Junos for EX Series Switches IPv6 Neighbor Discovery DoS (JSA10781)

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

The remote device is affected by a denial of service vulnerability.

Description :

According to its self-reported version, the remote Juniper Junos EX
Series device is affected by a memory leak issue in IPv6 processing
when handling a specially crafted IPv6 Neighbor Discovery (ND) packet.
An unauthenticated, remote attacker can exploit this, via a malicious
network-based flood of these crafted IPv6 NDP packets, to cause
resource exhaustion, resulting in a denial of service condition. Note
that this issue only affects EX Series Ethernet Switches with IPv6
enabled.

Nessus has not tested for this issue but has instead relied only on
the device's self-reported version and model.

See also :

http://www.nessus.org/u?ae19d456

Solution :

Apply the relevant Junos software release or workaround referenced in
Juniper advisory JSA10781.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)

Family: Junos Local Security Checks

Nessus Plugin ID: 99526 ()

Bugtraq ID: 97615

CVE ID: CVE-2017-2315

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now