Support Support Downloads Knowledge Base Service Request Manager My Juniper Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

Crafted IPv6 messages can crash the Routing Engine (VU#110947)

0

0

Article ID: JSA10373 SECURITY_ADVISORIES Last Updated: 09 May 2013Version: 2.0
Legacy Advisory Id:
PSN-2007-12-009
Product Affected:
All routing platforms running JUNOS software releases 7.3 through 8.4 (inclusive) built prior to December 8, 2007.
Problem:
Due to an error in managing packet buffers, a crafted IPv6 message can trigger an invalid memory reference in the Routing Engine kernel, resulting in a crash.

This issue is tracked in PR/264612.
Solution:
All JUNOS software built on or after December 8, 2007 has been corrected to properly manage IPv6 packet buffers. JUNOS releases 8.5R1 and beyond are NOT susceptible to this vulnerability because a revised IPv6 protocol stack was implemented.
Implementation:
Customers running IPv6 networks on JUNOS software releases between 7.3 and 8.4 (inclusive) are strongly urged to update their routers to a version of JUNOS software that contains the corrected code. There is no work-around for this issue.
Severity Level:
High
Severity Assessment:
This vulnerability can be remotely exploited with tools that are readily available.
Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Security Alerts and Vulnerabilities

Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search