Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Junos RSVP Denial of Service Vulnerability
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
JunOS is prone to a Denial of Service vulnerability
Insight
Insight
Receipt of a crafted or malformed RSVP packet may cause the routing protocol daemon to hang or crash. This issue only occurs during processing of RSVP PATH messages. If RSVP is not enabled on an interface, then the issue cannot be triggered via that interface.
Affected Software
Affected Software
Junos OS 11.4, 12.1, 12.2, 12.3, 13.1, 13.2 with support for RSVP enabled.
Detection Method
Detection Method
Checks if a vulnerable OS build is present on the target host.
Solution
Solution
New builds of Junos OS software are available from Juniper. As a workaround enable RSVP only on trusted interfaces as required for MPLS.