Lucene search

[email protected]CVE-2016-1257

HistoryJan 15, 2016 - 7:59 p.m.

CVE-2016-1257

2016-01-1519:59:06

CWE-20

[email protected]

web.nvd.nist.gov

juniper

junos os

cve-2016-1257

denial of service

security issue

ldp packet

vulnerability

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

5.6 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.2%

JSON

The Routing Engine in Juniper Junos OS 13.2R5 through 13.2R8, 13.3R1 before 13.3R8, 13.3R7 before 13.3R7-S3, 14.1R1 before 14.1R6, 14.1R3 before 14.1R3-S9, 14.1R4 before 14.1R4-S7, 14.1X51 before 14.1X51-D65, 14.1X53 before 14.1X53-D12, 14.1X53 before 14.1X53-D28, 14.1X53 before 4.1X53-D35, 14.2R1 before 14.2R5, 14.2R3 before 14.2R3-S4, 14.2R4 before 14.2R4-S1, 15.1 before 15.1R3, 15.1F2 before 15.1F2-S2, and 15.1X49 before 15.1X49-D40, when LDP is enabled, allows remote attackers to cause a denial of service (RPD routing process crash) via a crafted LDP packet.

Affected configurations

NVD

Node

juniperjunosMatch13.2r5

juniperjunosMatch13.2r6

juniperjunosMatch13.2r7

juniperjunosMatch13.2r7-s1

juniperjunosMatch13.2r7-s2

juniperjunosMatch13.3r1

juniperjunosMatch13.3r2

juniperjunosMatch13.3r3

juniperjunosMatch13.3r4

juniperjunosMatch13.3r5

juniperjunosMatch13.3r6

juniperjunosMatch13.3r7

juniperjunosMatch14.1r1

juniperjunosMatch14.1r2

juniperjunosMatch14.1r3

juniperjunosMatch14.1r4

juniperjunosMatch14.1r5

juniperjunosMatch14.1x51

juniperjunosMatch14.1x51d60

juniperjunosMatch14.1x53

juniperjunosMatch14.1x53d10

juniperjunosMatch14.1x53d15

juniperjunosMatch14.1x53d25

juniperjunosMatch14.1x53d26

juniperjunosMatch14.2r1

juniperjunosMatch14.2r2

juniperjunosMatch14.2r3

juniperjunosMatch14.2r4

juniperjunosMatch15.1

juniperjunosMatch15.1f2

juniperjunosMatch15.1f2-s1

juniperjunosMatch15.1r1

juniperjunosMatch15.1r2

juniperjunosMatch15.1x49d10

juniperjunosMatch15.1x49d20

CPENameOperatorVersion
juniper:junosjuniper junoseq13.2
juniper:junosjuniper junoseq13.3
juniper:junosjuniper junoseq14.1
juniper:junosjuniper junoseq14.1x51
juniper:junosjuniper junoseq14.1x53
juniper:junosjuniper junoseq14.2
juniper:junosjuniper junoseq15.1
juniper:junosjuniper junoseq15.1x49

CPE	Name	Operator	Version
juniper:junos	juniper junos	eq	13.2
juniper:junos	juniper junos	eq	13.3
juniper:junos	juniper junos	eq	14.1
juniper:junos	juniper junos	eq	14.1x51
juniper:junos	juniper junos	eq	14.1x53
juniper:junos	juniper junos	eq	14.2
juniper:junos	juniper junos	eq	15.1
juniper:junos	juniper junos	eq	15.1x49

References

kb.juniper.net/InfoCenter/index?page=content&id=JSA10715

www.securitytracker.com/id/1035117

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

5.6 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.2%

JSON

Related for CVE-2016-1257

openvas1 cvelist1 nessus1 nvd1 prion1