Juniper Junos Connectionless Network Protocol (CLNP) Packet Handling Unspecified Remote Code Execution / DoS (JSA10844)
Critical Nessus Plugin ID 109210
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version number, the remote Juniper Junos device is affected by an unspecified flaw that is triggered when handling Connectionless Network Protocol (CLNP) packets. This allows a remote attacker to crash a device or execute arbitrary code.
Note: This issue is only affected if 'clns-routing' or 'ESIS' is explicitly configured.
SolutionApply the relevant Junos software release or workaround referenced in Juniper advisory JSA10844.