Juniper Junos NTP Server Amplification Remote DoS (JSA10613)
Medium Nessus Plugin ID 77756
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version number, the remote Juniper Junos device is affected by a vulnerability in the NTP daemon related to the handling of the 'monlist' command. A remote attacker can exploit this by forging a request that results in a distributed denial of service.
Note that this issue only affects devices with NTP client or server enabled.
SolutionApply the relevant Junos software release or workaround referenced in Juniper advisory JSA10613.