CVE-2015-7748

Name of the Vulnerable Software and Affected Versions Juniper chassis with Trio (Trinity) chipset line cards and Junos OS versions prior to 13.3R8 Juniper chassis with Trio (Trinity) chipset line cards and Junos OS versions prior to 14.1R6 Juniper chassis with Trio (Trinity) chipset line cards and Junos OS versions prior to 14.2R5 Juniper chassis with Trio (Trinity) chipset line cards and Junos OS versions prior to 15.1R2

Description The issue allows remote attackers to cause a denial of service, resulting in an MPC line card crash, via a crafted uBFD packet. This is due to insufficient input validation in the Junos OS.

Recommendations For versions prior to 13.3R8, update to 13.3R8 or later to resolve the issue. For versions prior to 14.1R6, update to 14.1R6 or later to resolve the issue. For versions prior to 14.2R5, update to 14.2R5 or later to resolve the issue. For versions prior to 15.1R2, update to 15.1R2 or later to resolve the issue.