Mageni Mageni Security LLC

Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

Junos LDP DoS Vulnerability

Information

Severity

Severity

Medium

Family

Family

JunOS Local Security Checks

CVSSv2 Base

CVSSv2 Base

4.3

CVSSv2 Vector

CVSSv2 Vector

AV:N/AC:M/Au:N/C:N/I:N/A:P

Solution Type

Solution Type

Vendor Patch

Created

Created

8 years ago

Modified

Modified

5 years ago

Share

Summary

Junos OS is prone to a Denial of Service vulnerability with LDP enabled.

Insight

Insight

If LDP is enabled via the 'protocols ldp' configuration option on a device running Junos OS, receipt of a crafted LDP packet may cause the RPD routing process to crash and restart. The interface on which the packet arrives does not need to have LDP enabled. As long as one interface to the peer has LDP enabled, the packet will be sent to Routing Engine for further processing, exposing the router to a denial of service (RPD crash).

Affected Software

Affected Software

Junos OS 13.2, 13.3, 14.1, 14.2 and 15.1

Detection Method

Detection Method

Checks if a vulnerable OS build is present on the target host.

Solution

Solution

New builds of Junos OS software are available from Juniper. As a workaround disable LDP.

Common Vulnerabilities and Exposures (CVE)

References