Juniper Junos HTTP Request Handling J-Web DoS (JSA10720)
Medium Nessus Plugin ID 88095
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version number, the remote Juniper Junos device is affected by denial of service vulnerability due to a flaw in the Embedthis Appweb Server when processing malformed HTTP requests. An unauthenticated, remote attacker can exploit this to crash the J-Web service.
SolutionApply the relevant Junos software release referenced in Juniper advisory JSA10720.