Juniper Junos SRX, vSRX, and J-Series ISC BIND DoS (JSA10799)
High Nessus Plugin ID 102074
SynopsisThe remote device is affected by a denial of service vulnerability.
DescriptionAccording to its self-reported version and model number, the remote Juniper Junos device is affected by a denial of service vulnerability in ISC BIND, specifically in the query_find() function within file bin/named/query.c, when simultaneously using DNS64 and RPZ for query responses. An unauthenticated, remote attacker can exploit this to cause an INSIST assertion failure or a NULL pointer read, resulting in termination of the service.
SolutionUpgrade to the relevant Junos software release referenced in Juniper security advisory JSA10799.