Follow Us

We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message

Juniper routers open to attack

No malicious exploitation reported yet

Article comments

A flaw has cropped up in Juniper's router operating system that can cause the systems to crash and reboot.

Juniper discovered a potential TCP vulnerability that affects certain releases of Junos software during "routine internal product testing," the company said. A Juniper spokesperson would not make an advisory on it available to Network World for publication.

But a report in Australia's iTnews.com states that by sending a specially crafted transmission control protocol (TCP) packet to a listening port on a Juniper Routing Engine, an exploiter can make the kernel in Junos crash, and cause routers to switch over or reboot.

Versions of Junos older than those released on 17 January are affected, according to iTnews, with newer ones containing a fix for the problem. The site, which apparently has access to the Juniper advisory, also states that the Juniper advisory recommends using access lists or firewall filters for the routers, deployed on both the edge and control plane.

The Juniper advisory also suggests implementing source address anti-spoofing to prevent traffic from bogus addresses reaching the devices, according to iTnews. The site also say unicast reverse path forwarding -- which checks if the IP address in a packet is reachable and if not, drops it -- can also be used to mitigate against the attack, together with RFC 3682 time-to-live security.

The Juniper spokesperson said the company is not aware of any malicious exploitation of the vulnerability.

"We are encouraging our customers to contact Juniper's Customer Support Center for a detailed advisory and solution implementation," the spokesperson stated in an email. "As a networking and security leader, we work closely with our customers to protect and defend their networks, and are committed to the responsible disclosure of security vulnerabilities."



Share:

More from Techworld

More relevant IT news

Comments



Send to a friend

Email this article to a friend or colleague:

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.

Techworld White Papers

Choose – and Choose Wisely – the Right MSP for Your SMB

End users need a technology partner that provides transparency, enables productivity, delivers...

Download Whitepaper

10 Effective Habits of Indispensable IT Departments

It’s no secret that responsibilities are growing while budgets continue to shrink. Download this...

Download Whitepaper

Gartner Magic Quadrant for Enterprise Information Archiving

Enterprise information archiving is contributing to organisational needs for e-discovery and...

Download Whitepaper

Advancing the state of virtualised backups

Dell Software’s vRanger is a veteran of the virtualisation specific backup market. It was the...

Download Whitepaper

Techworld UK - Technology - Business

Innovation, productivity, agility and profit

Watch this on demand webinar which explores IT innovation, managed print services and business agility.

Techworld Mobile Site

Access Techworld's content on the move

Get the latest news, product reviews and downloads on your mobile device with Techworld's mobile site.

Find out more...

From Wow to How : Making mobile and cloud work for you

On demand Biztech Briefing - Learn how to effectively deliver mobile work styles and cloud services together.

Watch now...

Site Map

* *