Junos OS: Kernel crash after processing specific incoming packet to the out of band management interface (JSA10911)
Low Nessus Plugin ID 121215
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version number, the remote Juniper Junos device is affected by a denial of service vulnerability. The Junos OS kernel crashes after processing a specific incoming packet to the out of band management interface (such as fxp0, me0, em0, vme0) destined for another address.
By continuously sending this type of packet, an attacker can repeatedly crash the kernel causing a sustained Denial of Service.
SolutionApply the relevant Junos software release referenced in Juniper advisory JSA10911.