Saturday, April 17, 2021

Juniper Junos OS: 2021-04 Security Bulletin: Junos OS: Multiple vulnerabilities in processing DHCPv6 packets may cause jdhcpd to crash and restart (JSA11168) (multiple CVEs)

rapid7 vulnerabilities In: , 
Description
On Juniper Networks Junos OS platforms configured as DHCPv6 local server or DHCPv6 Relay Agent, Juniper Networks Dynamic Host Configuration Protocol Daemon (JDHCPD) process might crash with a core dump if a malformed or specific DHCPv6 packet is received, resulting in a restart of the daemon. The daemon automatically restarts without intervention, but continued receipt and processing of these packets will repeatedly crash the JDHCPD process and sustain the Denial of Service (DoS) condition.
Solution(s)
  • juniper-junos-os-upgrade-latest


    • References
  • https://attackerkb.com/topics/cve-2021-0240
  • CVE - 2021-0240
  • CVE - 2021-0241
  • JSA11168




    •  

    Copyright © 2021 Vulnerability Database | Cyber Details™

    thank you Templateism for the design - You should have written the code a little more complicated - Nothing Encrypted anymore