Juniper Junos GRE DoS (PSN-2013-04-917)
Medium Nessus Plugin ID 66515
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version number, the remote Junos device has a denial of service vulnerability. Specially crafted GRE packets received on a multicast tunnel interface that are allowed to reach the routing engine can cause the kernel to crash. An unauthenticated attacker on the same subnet could exploit this to crash the host.
SolutionApply the relevant Junos upgrade referenced in Juniper advisory PSN-2013-04-917.