Juniper routers may crash on certain malformed packets

Published: 2010-01-07
Last Updated: 2010-01-07 15:39:42 UTC
by Daniel Wesemann (Version: 1)
4 comment(s)

I personally don't have access to the full vendor bulletin, but word is out that Juniper JUNOS routers can be crashed or made to reboot with easily spoofed malformed packets. If you are using Juniper routers, make sure to log in to the Juniper support portal to read their security alert.

Keywords: router
4 comment(s)

Comments

Also a lot of other bugs that could be easy to exploit. Suggest everyone with Junipers checks out
http://www.juniper.net/alerts/browsealerts.jsp?audience=2001&category=3004&topic=4001#results
(registration required)
or Juniper Technical Assistance Center(JTAC) at support@juniper.net, or (888) 314-JTAC / +1 408-745-2121
In summary, JunOS builds built on or after 27th March 2009 have all the fixes - so you may already be patched.
Here are the details:

http://praetorianprefect.com/archives/2010/01/junos-juniper-flaw-exposes-core-routers-to-kernal-crash/
Some additional information + video can be found here: http://www.toonk.nl/blog/?p=522

Diary Archives