Juniper Junos Extended DHCP Relay Agent Traffic Redirection (PSN-2011-07-300)
Low Nessus Plugin ID 55934
SynopsisThe remote router allows traffic redirection.
DescriptionAccording to its self-reported version number, the remote Juniper router has a vulnerable Extended DHCP Relay Agent. Any interface which has the Extended DHCP Relay Agent enabled intercepts unicast DHCP reply packets. A remote attacker could exploit this by acting as a malicious DHCP server, sending specially crafted unicast DHCP reply packets through the router.
This could result in traffic being redirected.
SolutionApply the relevant Junos upgrade referenced in Juniper advisory PSN-2011-07-300.