CVE-2018-0027

Name of the Vulnerable Software and Affected Versions: Junos OS versions prior to 16.1R3

Description: The issue is caused by the receipt of a crafted or malformed RSVP PATH message, which may cause the routing protocol daemon (RPD) to hang or crash. This can lead to an extended network outage because routing updates cannot be processed when RPD is unavailable. The issue can only be triggered on interfaces where RSVP is enabled.

Recommendations: For Junos OS versions prior to 16.1R3, update to version 16.1R3 or later to resolve the issue. As a temporary workaround, consider disabling RSVP on interfaces where it is not necessary to minimize the risk of exploitation.