Tuesday, July 11, 2006

Juniper Networks JUNOS IPv6 Packet Handling Denial of Service

Via Secunia.

Description:
A vulnerability has been reported in the M-series, T-series, and J-Series routers, which can be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to an error when freeing memory after receiving certain IPv6 packets. This can be exploited to cause a exhaust available memory by sending specially crafted IPv6 packets to the vulnerable router.

Successful exploitation crashes the router.

The vulnerability has been reported for routers using a version of the JUNOS Internet Software built before 2006-05-10.

Solution:
Apply an updated version of the JUNOS software.

Provided and/or discovered by:
Reported by the vendor.

Original Advisory:
http://www.juniper.net/support/security/alerts/IPv6_bug.txt
http://www.juniper.net/support/security/alerts/EXT-PSN-2006-06-017.txt

More here.

0 Comments:

Post a Comment

<< Home