Juniper Junos Unnumbered Interface Cache Poisoning Remote DoS and Information Disclosure (JSA10595)

Medium Nessus Plugin ID 70480


The remote device is missing a vendor-supplied security patch.


According to its self-reported version number, the remote Juniper Junos device is affected by denial of service and information disclosure vulnerabilities. An adjacent attacker can poison the ARP cache and create a bogus forwarding table entry for an IP address, effectively creating a denial of service for that subscriber or interface or leading to information disclosure as the router answers any ARP message from any IP address.

Note that these issues only affect devices that have Proxy ARP enabled on an unnumbered interface.


Apply the relevant Junos software release referenced in Juniper advisory JSA10595.

See Also

Plugin Details

Severity: Medium

ID: 70480

File Name: juniper_jsa10595.nasl

Version: 1.9

Type: combined

Published: 2013/10/17

Modified: 2017/05/16

Dependencies: 55932

Risk Information

Risk Factor: Medium


Base Score: 6.1

Temporal Score: 5.3

Vector: CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:C

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/o:juniper:junos

Required KB Items: Host/Juniper/JUNOS/Version, Host/Juniper/JUNOS/BuildDate

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2013/10/09

Vulnerability Publication Date: 2013/10/09

Reference Information

CVE: CVE-2013-6014

BID: 63391

OSVDB: 98366

JSA: JSA10595