Juniper Junos vMX Predictable IP ID Sequence Numbers (JSA10903)
High Nessus Plugin ID 121129
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version number, the remote Junos device uses a predictable IP ID sequence number. It is, therefore, vulnerable to a family of attacks that rely on this property, including a susceptibility to being used as a 'zombie' host in an 'idle scan' blind port scan of another remote host.
SolutionApply the relevant Junos software release referenced in Juniper advisory JSA10903.