Juniper Networks devices running affected Junos OS versions may be impacted by the receipt of a crafted BGP UPDATE which can lead to an rpd (routing process daemon) crash and restart. Repeated crashes of the rpd daemon can result in an extended denial of service condition. The affected Junos OS versions are: 15.1 prior to 15.1F2-S15, 15.1F5-S7, 15.1F6-S5, 15.1F7, 15.1R4-S7, 15.1R5-S2, 15.1R6; 15.1X49 prior to 15.1X49-D78, 15.1X49-D80; 15.1X53 prior to 15.1X53-D230, 15.1X53-D63, 15.1X53-D70; 16.1 prior to 16.1R3-S3, 16.1R4; 16.2 prior to 16.2R1-S3, 16.2R2; Releases prior to Junos OS 15.1 are unaffected by this vulnerability. 17.1R1, 17.2R1, and all subsequent releases have a resolution for this vulnerability.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/97606 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1038257 | |
https://kb.juniper.net/JSA10778 | Vendor Advisory |
http://www.securityfocus.com/bid/97606 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1038257 | |
https://kb.juniper.net/JSA10778 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 03:23
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.securityfocus.com/bid/97606 - Third Party Advisory, VDB Entry | |
References | () http://www.securitytracker.com/id/1038257 - | |
References | () https://kb.juniper.net/JSA10778 - Vendor Advisory |
Information
Published : 2017-04-24 15:59
Updated : 2024-11-21 03:23
NVD link : CVE-2017-2313
Mitre link : CVE-2017-2313
CVE.ORG link : CVE-2017-2313
JSON object : View
Products Affected
juniper
- junos
CWE
CWE-20
Improper Input Validation