Juniper Junos Extended DHCP Relay Agent Traffic Redirection (PSN-2011-07-300)

Low Nessus Plugin ID 55934

Synopsis

The remote router allows traffic redirection.

Description

According to its self-reported version number, the remote Juniper router has a vulnerable Extended DHCP Relay Agent. Any interface which has the Extended DHCP Relay Agent enabled intercepts unicast DHCP reply packets. A remote attacker could exploit this by acting as a malicious DHCP server, sending specially crafted unicast DHCP reply packets through the router.
This could result in traffic being redirected.

Solution

Apply the relevant Junos upgrade referenced in Juniper advisory PSN-2011-07-300.

See Also

http://www.nessus.org/u?b4d1c392

Plugin Details

Severity: Low

ID: 55934

File Name: juniper_psn-2011-07-300.nasl

Version: 1.9

Type: combined

Published: 2011/08/22

Updated: 2018/08/10

Dependencies: 55932

Risk Information

Risk Factor: Low

CVSS v2.0

Base Score: 2.9

Vector: CVSS2#AV:A/AC:M/Au:N/C:P/I:N/A:N

Vulnerability Information

CPE: cpe:/o:juniper:junos

Required KB Items: Host/Juniper/model, Host/Juniper/JUNOS/Version

Patch Publication Date: 2011/07/13

Vulnerability Publication Date: 2011/07/13