Main Vulnerability Database Vulnerabilities #VU17088

#VU17088 Improper input validation in Juniper Junos OS - CVE-2019-0011

Published: January 9, 2019 / Updated: January 18, 2019

Vulnerability identifier: #VU17088

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2019-0011

CWE-ID: CWE-20

Exploitation vector: Adjecent network

Exploit availability: No public exploit available

Vulnerable software:
Juniper Junos OS

Software vendor:
Juniper Networks, Inc.

Description

The vulnerability allows an adjacent attacker to cause DoS condition.

The vulnerability exists due to an error when processing malicious input. An adjacent attacker can continuously send a specially crafted packet and cause the kernel to crash.

Remediation

The vulnerability has been addressed in the versions 17.2R1-S7, 17.2R3, 17.2X75-D110, 17.3R3-S3, 17.4R1-S4, 17.4R2, 18.1R2, 18.2R1, 18.2X75-D5.

External links

https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10911&cat=SIRT_1&actp=LIST

#VU17088 Improper input validation in Juniper Junos OS - CVE-2019-0011

Description

Remediation

External links

Please verify you're human