Juniper Junos Fragmented OSPFv3 Packet DoS (JSA10668)
Medium Nessus Plugin ID 80956
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version number, the remote Juniper Junos device is affected by a denial of service vulnerability when processing fragmented OSPFv3 packets with an IPsec Authentication Header (AH). A remote attacker on an adjacent network can exploit this issue to crash the kernel, resulting in the Routing Engine (RE) restarting.
SolutionApply the relevant Junos software release or workaround referenced in Juniper advisory JSA10668.