Junos OS: pd crash on VPLS PE upon receipt of specific BGP message (JSA10912)
Medium Nessus Plugin ID 121111
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version number, the remote Juniper Junos device is affected by a denial of service vulnerability which allows an attacker to craft a specific BGP message to cause the routing protocol daemon (rpd) process to crash and restart. While rpd restarts after a crash, repeated crashes can result in an extended DoS condition.
SolutionApply the relevant Junos software release referenced in Juniper advisory JSA10912.