Main Vulnerability Database SB2018101022

SB2018101022 - Resource management error in Juniper Junos OS

Published: October 10, 2018 Updated: October 11, 2018

Security Bulletin ID SB2018101022

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Resource management error (CVE-ID: CVE-2018-0043)

The vulnerability allows a remote attacker to perform denial of service (DoS) attack.

The vulnerability is caused by improper resources management when processing MPLS packets. A remote attacker can repeatedly send specially crafted MPLS packets to the affected device and cause the routing protocol daemon (RPD) process to crash and restart.

The vulnerability affects IPv4 and IPv6.

Remediation

Install update from vendor's website.

References

https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10877&cat=SIRT_1&actp=LIST