PT-2017-15375 · Juniper Networks · Junos
Published
2017-07-14
·
Updated
2019-10-09
·
CVE-2017-2348
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Junos OS versions prior to 14.1X53-D12, 14.1X53-D38, 14.1X53-D40 on QFX, EX, QFabric System
Junos OS versions prior to 15.1F2-S18, 15.1R4 on all products and platforms
Junos OS versions prior to 15.1X49-D80 on SRX
Junos OS versions prior to 15.1X53-D51, 15.1X53-D60 on NFX, QFX, EX
Description
The Juniper Enhanced jdhcpd daemon may experience high CPU utilization or crash and restart upon receipt of an invalid IPv6 UDP packet, resulting in a denial of service as DHCP service is interrupted.
Recommendations
For Junos OS versions prior to 14.1X53-D12, 14.1X53-D38, 14.1X53-D40 on QFX, EX, QFabric System, update to version 14.1X53-D12, 14.1X53-D38, or 14.1X53-D40.
For Junos OS versions prior to 15.1F2-S18, 15.1R4 on all products and platforms, update to version 15.1F2-S18 or 15.1R4.
For Junos OS versions prior to 15.1X49-D80 on SRX, update to version 15.1X49-D80.
For Junos OS versions prior to 15.1X53-D51, 15.1X53-D60 on NFX, QFX, EX, update to version 15.1X53-D51 or 15.1X53-D60.
Fix
DoS
Resource Exhaustion
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Junos