CVE-2017-10602

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS versions prior to 14.1X53-D46 on EX2200/VC, EX3200, EX3300/VC, EX4200, EX4300, EX4550/VC, EX4600, EX6200, EX8200/VC (XRE), QFX3500, QFX3600, QFX5100 Juniper Networks Junos OS versions prior to 14.1X53-D130 on QFabric System Juniper Networks Junos OS versions prior to 14.2R4-S9, 14.2R6 Juniper Networks Junos OS versions prior to 15.1F5, 15.1R3 Juniper Networks Junos OS versions prior to 15.1X49-D40 on SRX Series Juniper Networks Junos OS versions prior to 15.1X53-D47 on NFX150, NFX250 Juniper Networks Junos OS versions prior to 15.1X53-D65 on QFX10000 Series Juniper Networks Junos OS versions prior to 15.1X53-D233 on QFX5110, QFX5200

Description The issue is caused by a buffer overflow in the Junos OS CLI. This may allow a local authenticated user with read-only privileges and access to the Junos CLI to execute code with root privileges, thus elevating their privileges.

Recommendations For versions prior to 14.1X53-D46 on EX2200/VC, EX3200, EX3300/VC, EX4200, EX4300, EX4550/VC, EX4600, EX6200, EX8200/VC (XRE), QFX3500, QFX3600, QFX5100, update to version 14.1X53-D46 or later. For versions prior to 14.1X53-D130 on QFabric System, update to version 14.1X53-D130 or later. For versions prior to 14.2R4-S9, 14.2R6, update to version 14.2R4-S9 or 14.2R6 or later. For versions prior to 15.1F5, 15.1R3, update to version 15.1F5 or 15.1R3 or later. For versions prior to 15.1X49-D40 on SRX Series, update to version 15.1X49-D40 or later. For versions prior to 15.1X53-D47 on NFX150, NFX250, update to version 15.1X53-D47 or later. For versions prior to 15.1X53-D65 on QFX10000 Series, update to version 15.1X53-D65 or later. For versions prior to 15.1X53-D233 on QFX5110, QFX5200, update to version 15.1X53-D233 or later.