CVE-2016-1257

The Routing Engine in Juniper Junos OS 13.2R5 through 13.2R8, 13.3R1 before 13.3R8, 13.3R7 before 13.3R7-S3, 14.1R1 before 14.1R6, 14.1R3 before 14.1R3-S9, 14.1R4 before 14.1R4-S7, 14.1X51 before 14.1X51-D65, 14.1X53 before 14.1X53-D12, 14.1X53 before 14.1X53-D28, 14.1X53 before 4.1X53-D35, 14.2R1 before 14.2R5, 14.2R3 before 14.2R3-S4, 14.2R4 before 14.2R4-S1, 15.1 before 15.1R3, 15.1F2 before 15.1F2-S2, and 15.1X49 before 15.1X49-D40, when LDP is enabled, allows remote attackers to cause a denial of service (RPD routing process crash) via a crafted LDP packet.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.9 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 68%
VendorProductVersion
juniperjunos
13.2:r5
juniperjunos
13.2:r6
juniperjunos
13.2:r7
juniperjunos
13.2:r7-s1
juniperjunos
13.2:r7-s2
juniperjunos
13.3:r1
juniperjunos
13.3:r2
juniperjunos
13.3:r3
juniperjunos
13.3:r4
juniperjunos
13.3:r5
juniperjunos
13.3:r6
juniperjunos
13.3:r7
juniperjunos
14.1:r1
juniperjunos
14.1:r2
juniperjunos
14.1:r3
juniperjunos
14.1:r4
juniperjunos
14.1:r5
juniperjunos
14.1x51:x51
juniperjunos
14.1x51:x51
juniperjunos
14.1x53:x53
juniperjunos
14.1x53:x53
juniperjunos
14.1x53:x53
juniperjunos
14.1x53:x53
juniperjunos
14.1x53:x53
juniperjunos
14.2:r1
juniperjunos
14.2:r2
juniperjunos
14.2:r3
juniperjunos
14.2:r4
juniperjunos
15.1
juniperjunos
15.1:f2
juniperjunos
15.1:f2-s1
juniperjunos
15.1:r1
juniperjunos
15.1:r2
juniperjunos
15.1x49:x49
juniperjunos
15.1x49:x49
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10715
http://www.securitytracker.com/id/1035117
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10715
http://www.securitytracker.com/id/1035117