Knowledge Search


×
 

IPSec Replay vulnerability (FreeBSD Security Advisory FreeBSD-SA-06:11.ipsec)

  [JSA10359] Show Article Properties


Legacy Advisory Id:
PSN-2006-03-014
Product Affected:
All Juniper networks products
Problem:
The IPSec implementation used in FreeBSD fails to update the replay sequence number. As a result, there is no protection against replay attacks.
Solution:
Code inspection has determined that the affected portion of the FreeBSD IPSec implementation is not used in the JUNOS operating system. Therefore, all versions of JUNOS are NOT SUSCEPTIBLE to this vulnerability.

The IPSec implementations used in ScreenOS and JUNOSe are not derived from the FreeBSD implementation. Code inspection has determined that ScreenOS and JUNOSe are also NOT SUSCEPTIBLE to this vulnerability.
Implementation:
No customer action is required. Juniper Networks products are NOT SUSCEPTIBLE to this vulnerability.
Related Links:
Risk Level:
None
Risk Assessment:
Juniper Networks products are NOT SUSCEPTIBLE to this vulnerability.