Lucene search
This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.JUNIPER_JSA10651.NASLHistoryOct 14, 2014 - 12:00 a.m.
Juniper JunosE Malformed ICMP Remote DoS (JSA10651)
2014-10-1400:00:00
This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
18
0.009 Low
EPSS
Percentile
82.5%
According to its version, the remote Juniper E-Series device is potentially affected by a denial of service vulnerability. This issue is caused by improper processing of malformed ICMP packets into the log format for ‘icmpTraffic’ logging when ‘DEBUG’ severity is selected.
Note that devices with logging severities below ‘DEBUG’ are not affected.
#
# (C) Tenable Network Security, Inc.
#
# @DEPRECATED@
#
# Disabled on 9/5/2023. Deprecated due to target obsolescence.
#
include("compat.inc");
if (description)
{
script_id(78422);
script_version("1.7");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/09/05");
script_cve_id("CVE-2014-6377");
script_bugtraq_id(70368);
script_xref(name:"IAVA", value:"2015-A-0313");
script_xref(name:"JSA", value:"JSA10651");
script_name(english:"Juniper JunosE Malformed ICMP Remote DoS (JSA10651) (deprecated)");
script_summary(english:"Checks the JunosE version.");
script_set_attribute(attribute:"synopsis", value:"This plugin has been deprecated.");
script_set_attribute(attribute:"description", value:
"According to its version, the remote Juniper E-Series device is
potentially affected by a denial of service vulnerability. This issue
is caused by improper processing of malformed ICMP packets into the
log format for 'icmpTraffic' logging when 'DEBUG' severity is
selected.
Note that devices with logging severities below 'DEBUG' are not
affected.
This plugin has been deprecated. Juniper ERX devices reached
End of Support Life on October 26, 2018.");
script_set_attribute(attribute:"see_also", value:"https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10651");
script_set_attribute(attribute:"see_also", value:"https://support.juniper.net/support/eol/software/junose/");
script_set_attribute(attribute:"solution", value:"N/A");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2014-6377");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2014/10/08");
script_set_attribute(attribute:"patch_publication_date", value:"2014/09/12");
script_set_attribute(attribute:"plugin_publication_date", value:"2014/10/14");
script_set_attribute(attribute:"potential_vulnerability", value:"true");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:juniper:junose");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Misc.");
script_copyright(english:"This script is Copyright (C) 2014-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_require_keys("Settings/ParanoidReport", "Host/JunosE/version");
exit(0);
}
exit(0, 'This plugin has been deprecated. Juniper ERX devices reached End of Support Life on October 26, 2018.');
Related
cve
cve
CVE-2014-6377
2014-10-14 14:55:06
cvelist
cvelist
CVE-2014-6377
2014-10-14 14:00:00
nvd
nvd
CVE-2014-6377
2014-10-14 14:55:06
prion
prion
Input validation
2014-10-14 14:55:00