漏洞标题
Junos OS: QFX10K Series: 收到特定真实的 packets 时,在 sFlow 启用时引发 PFE 崩溃
漏洞描述信息
Junos OS:当启用sFlow时,QFX10K系列:在接收到特定真实数据包时,PFE会发生崩溃
CVSS信息
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
漏洞类别
N/A
漏洞标题
Junos OS: QFX10K Series: PFE crash upon receipt of specific genuine packets when sFlow is enabled
漏洞描述信息
When sFlow is enabled and it monitors a packet forwarded via ECMP, a buffer management vulnerability in the dcpfe process of Juniper Networks Junos OS on QFX10K Series systems allows an attacker to cause the Packet Forwarding Engine (PFE) to crash and restart by sending specific genuine packets to the device, resulting in a Denial of Service (DoS) condition. The dcpfe process tries to copy more data into a smaller buffer, which overflows and corrupts the buffer, causing a crash of the dcpfe process. Continued receipt and processing of these packets will create a sustained Denial of Service (DoS) condition. This issue affects Juniper Networks Junos OS on QFX10K Series: All versions prior to 19.4R3-S9; 20.2 versions prior to 20.2R3-S6; 20.3 versions prior to 20.3R3-S6; 20.4 versions prior to 20.4R3-S5; 21.1 versions prior to 21.1R3-S4; 21.2 versions prior to 21.2R3-S3; 21.3 versions prior to 21.3R3-S2; 21.4 versions prior to 21.4R2-S2, 21.4R3; 22.1 versions prior to 22.1R2; 22.2 versions prior to 22.2R1-S2, 22.2R2.
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
漏洞类别
未进行输入大小检查的缓冲区拷贝(传统缓冲区溢出)
漏洞标题
Juniper Networks Junos OS 安全漏洞
漏洞描述信息
Juniper Networks Junos OS是美国瞻博网络(Juniper Networks)公司的一套专用于该公司的硬件设备的网络操作系统。该操作系统提供了安全编程接口和Junos SDK。 Juniper Networks Junos OS存在安全漏洞,该漏洞源于dcpfe进程中存在缓冲区管理漏洞,导致拒绝服务(DoS)。以下产品及版本受到影响:19.4R3-S9之前版本、20.2版本至20.2R3-S6之前版本、20.3版本至20.3R3-S6之前版本、20.4版本至20.4R3-S5之前版本
CVSS信息
N/A
漏洞类别
其他