CVE-2015-5362

Name of the Vulnerable Software and Affected Versions Junos OS versions 12.1X44 before 12.1X44-D50 Junos OS versions 12.1X46 before 12.1X46-D35 Junos OS versions 12.1X47 before 12.1X47-D25 Junos OS versions 12.3 before 12.3R10 Junos OS versions 12.3X48 before 12.3X48-D15 Junos OS versions 13.2 before 13.2R8 Junos OS versions 13.3 before 13.3R6 Junos OS versions 14.1 before 14.1R5 Junos OS versions 14.1X50 before 14.1X50-D85 Junos OS versions 14.1X55 before 14.1X55-D20 Junos OS versions 14.2 before 14.2R3 Junos OS versions 15.1 before 15.1R1 Junos OS versions 15.1X49 before 15.1X49-D10

Description The issue allows remote attackers to cause a denial of service or execute arbitrary code via a crafted BFD packet. This is related to the BFD daemon in Juniper Junos OS.

Recommendations For Junos OS versions 12.1X44 before 12.1X44-D50, update to version 12.1X44-D50 or later. For Junos OS versions 12.1X46 before 12.1X46-D35, update to version 12.1X46-D35 or later. For Junos OS versions 12.1X47 before 12.1X47-D25, update to version 12.1X47-D25 or later. For Junos OS versions 12.3 before 12.3R10, update to version 12.3R10 or later. For Junos OS versions 12.3X48 before 12.3X48-D15, update to version 12.3X48-D15 or later. For Junos OS versions 13.2 before 13.2R8, update to version 13.2R8 or later. For Junos OS versions 13.3 before 13.3R6, update to version 13.3R6 or later. For Junos OS versions 14.1 before 14.1R5, update to version 14.1R5 or later. For Junos OS versions 14.1X50 before 14.1X50-D85, update to version 14.1X50-D85 or later. For Junos OS versions 14.1X55 before 14.1X55-D20, update to version 14.1X55-D20 or later. For Junos OS versions 14.2 before 14.2R3, update to version 14.2R3 or later. For Junos OS versions 15.1 before 15.1R1, update to version 15.1R1 or later. For Junos OS versions 15.1X49 before 15.1X49-D10, update to version 15.1X49-D10 or later.