Juniper Junos Unnumbered Interface Cache Poisoning Remote DoS and Information Disclosure (JSA10595)
Medium Nessus Plugin ID 70480
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version number, the remote Juniper Junos device is affected by denial of service and information disclosure vulnerabilities. An adjacent attacker can poison the ARP cache and create a bogus forwarding table entry for an IP address, effectively creating a denial of service for that subscriber or interface or leading to information disclosure as the router answers any ARP message from any IP address.
Note that these issues only affect devices that have Proxy ARP enabled on an unnumbered interface.
SolutionApply the relevant Junos software release referenced in Juniper advisory JSA10595.