Juniper Junos Network Topology Loop DoS (JSA10719)
Medium Nessus Plugin ID 88094
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version number, the remote Juniper Junos device is affected by a denial of service vulnerability due to a flaw in the Spanning Tree Protocol implementation. An unauthenticated, remote attacker can exploit this, via specially crafted packets that create an artificial loop in the network topology, to cause excessive bandwidth usage.
SolutionApply the relevant Junos software release referenced in Juniper advisory JSA10719.