Vulnerability Note VU#409555
Juniper JunOS Routing Engine MPLS denial of service
Juniper routers will become severely disrupted when attacked with specially-crafted MPLS packets.
Juniper routers running JUNOS have a vulnerability in which specially-crafted MPLS packets can cause normal operation of affected routers to be severely disrupted.
According to Juniper's security bulletin PSN-2005-02-004:
A remote, unauthenticated attacker may cause severe operational disruption to affected Juniper routers. Affected routers will suffer an effective denial of routing service when this vulnerability is exploited.
Please see the vendor statement with relevant patches. Users registered at Juniper's support site should visit https://www.juniper.net/alerts/viewalert.jsp?txtAlertNumber=PSN-2005-02-004&actionBtn=Search
According to Juniper, it is not possible to use network filters to protect vulnerable routers. Vulnerable routers must be updated in order to completely mitigate this vulnerability.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Juniper Networks, Inc.||Affected||26 Jan 2005||01 May 2006|
CVSS Metrics (Learn More)
Juniper has thanked Qwest Communication Software Certification team for bringing this issue to their attention.
This document was written by Jeffrey S. Havrilla.
- CVE IDs: CVE-2004-0467
- Date Public: 26 Jan 2005
- Date First Published: 26 Jan 2005
- Date Last Updated: 01 May 2006
- Severity Metric: 7.09
- Document Revision: 10
If you have feedback, comments, or additional information about this vulnerability, please send us email.