Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Junos GNU libc GLOB_LIMIT DoS Vulnerability
Information
Severity
Severity
High
Family
Family
JunOS Local Security Checks
CVSSv2 Base
CVSSv2 Base
7.8
CVSSv2 Vector
CVSSv2 Vector
AV:N/AC:L/Au:N/C:N/I:N/A:C
Solution Type
Solution Type
Vendor Patch
Created
Created
10 years ago
Modified
Modified
5 years ago
Summary
Remote authenticated users can cause a partial denial of service via crafted glob expressions.
Insight
Insight
The glob implementation in libc allows authenticated remote users to cause a denial of service via crafted glob expressions that do not match any pathnames.
Affected Software
Affected Software
Platforms running Junos OS 10.4, 11.4, 12.1, 12.2, 12.3, 13.1.
Detection Method
Detection Method
Checks if a vulnerable OS build is present on the target host.
Solution
Solution
New builds of Junos OS software are available from Juniper. As a workaround ACLs or firewall filters to limit FTP access to the router only from trusted hosts.