Juniper Junos J-Web CPU Utilization DoS (PSN-2012-04-547)

Medium Nessus Plugin ID 58876

Synopsis

The remote device has a denial of service vulnerability.

Description

According to its self-reported version number, the J-Web component of
the remote Junos system has a denial of service vulnerability. A high
rate of inbound HTTP connections over an extended period can result in
high CPU utilization, even after the connections are terminated. A
remote, unauthenticated attacker could exploit this to cause a denial
of service.

Solution

Apply the relevant Junos upgrade referenced in Juniper advisory
PSN-2012-04-547.

See Also

http://www.nessus.org/u?d0e1a31c

Plugin Details

Severity: Medium

ID: 58876

File Name: juniper_psn-2012-04-547.nasl

Version: 1.8

Type: combined

Published: 2012/04/25

Modified: 2018/08/08

Dependencies: 55932

Risk Information

Risk Factor: Medium

CVSS v2.0

Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/o:juniper:junos

Patch Publication Date: 2012/04/11

Vulnerability Publication Date: 2012/04/11