Juniper Junos IPv6 over IPv4 Security Policy Bypass (PSN-2011-07-299)
Medium Nessus Plugin ID 55935
SynopsisThe remote device does not enforce security policies on tunneled IPv6 traffic.
DescriptionAccording to its self-reported version number, the remote Juniper device is running a version of Junos with a security bypass vulnerability. When the device is configured to perform IPv6 in IPv4 tunneling, policies that apply to the encapsulated datagram are not enforced.
A remote, unauthenticated attacker could exploit this to bypass security restrictions.
SolutionApply the relevant Junos upgrade referenced in Juniper advisory PSN-2011-07-299.