Juniper Junos bfdd RCE (JSA10690)
High Nessus Plugin ID 85229
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version number, the remote Juniper Junos device is affected by a remote code execution vulnerability in the BFD daemon (bfdd). A remote attacker, using a specially crafted BFD packet, can exploit this to cause a denial of service or execute arbitrary code.
Note that this issue only affects devices with the BFD daemon running.
SolutionApply the relevant Junos software release or workaround referenced in Juniper advisory JSA10690.