Juniper Junos Unnumbered Interface Cache Poisoning Remote DoS and Information Disclosure (JSA10595)

medium Nessus Plugin ID 70480

Synopsis

The remote device is missing a vendor-supplied security patch.

Description

According to its self-reported version number, the remote Juniper Junos device is affected by denial of service and information disclosure vulnerabilities. An adjacent attacker can poison the ARP cache and create a bogus forwarding table entry for an IP address, effectively creating a denial of service for that subscriber or interface or leading to information disclosure as the router answers any ARP message from any IP address.

Note that these issues only affect devices that have Proxy ARP enabled on an unnumbered interface.

Solution

Apply the relevant Junos software release referenced in Juniper advisory JSA10595.

See Also

https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10595

Plugin Details

Severity: Medium

ID: 70480

File Name: juniper_jsa10595.nasl

Version: 1.11

Type: combined

Published: 10/17/2013

Updated: 7/12/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.3

CVSS v2

Risk Factor: Medium

Base Score: 6.1

Temporal Score: 4.5

Vector: CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Information

CPE: cpe:/o:juniper:junos

Required KB Items: Host/Juniper/JUNOS/Version, Host/Juniper/JUNOS/BuildDate

Exploit Ease: No known exploits are available

Patch Publication Date: 10/9/2013

Vulnerability Publication Date: 10/9/2013

Reference Information

CVE: CVE-2013-6014

BID: 63391

JSA: JSA10595