漏洞标题
Junos OS: QFX5100/QFX5110/QFX5120/QFX5200/QFX5210/EX4600/EX4650 Series: 当storm控制分析器启用时,如果设备处于活动风暴中,FEP中的堆缓冲区溢出将导致设备 hangs。
漏洞描述信息
Junos OS:QFX5100/QFX5110/QFX5120/QFX5200/QFX5210/EX4600/EX4650 系列:当风暴控制配置文件启用且设备处于活动风暴下时,PFE 中的基于堆的缓冲区溢出将导致设备挂起。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
漏洞类别
N/A
漏洞标题
Junos OS: QFX5100/QFX5110/QFX5120/QFX5200/QFX5210/EX4600/EX4650 Series: When storm control profiling is enabled and a device is under an active storm, a Heap-based Buffer Overflow in the PFE will cause a device to hang.
漏洞描述信息
An Uncontrolled Memory Allocation vulnerability leading to a Heap-based Buffer Overflow in the packet forwarding engine (PFE) of Juniper Networks Junos OS allows a network-based unauthenticated attacker to flood the device with traffic leading to a Denial of Service (DoS). The device must be configured with storm control profiling limiting the number of unknown broadcast, multicast, or unicast traffic to be vulnerable to this issue. This issue affects: Juniper Networks Junos OS on QFX5100/QFX5110/QFX5120/QFX5200/QFX5210/EX4600/EX4650 Series; 20.2 version 20.2R1 and later versions prior to 20.2R2. This issue does not affect: Juniper Networks Junos OS versions prior to 20.2R1.
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
漏洞类别
未经控制的内存分配
漏洞标题
Juniper Networks Junos OS 安全漏洞
漏洞描述信息
Juniper Networks Junos OS是美国瞻博网络(Juniper Networks)公司的一套专用于该公司的硬件设备的网络操作系统。该操作系统提供了安全编程接口和Junos SDK。 Juniper Networks Junos OS 存在安全漏洞,该漏洞源于 Packet Forwarding Engine (PFE) 中存在基于堆的缓冲区溢出漏洞。未经验证的远程攻击者可以向设备发送数据包以导致拒绝服务。
CVSS信息
N/A
漏洞类别
其他