Juniper Junos Firewall Bypass DoS (PSN-2013-04-912)
Medium Nessus Plugin ID 66510
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version number, the remote Junos device has a denial of service vulnerability. It is possible to bypass the firewall to create sessions for connections that should not be allowed by policy. A remote, untrusted attacker could exploit this to exhaust session resources, resulting in a denial of service.
SolutionApply the relevant Junos upgrade referenced in Juniper advisory PSN-2013-04-912.