Juniper Junos CVE-2018-0050 Denial of Service Vulnerability

Bugtraq ID:	106206
Class:	Failure to Handle Exceptional Conditions
CVE:	CVE-2018-0050
Remote:	Yes
Local:	No
Published:	Dec 10 2018 12:00AM
Updated:	Dec 10 2018 12:00AM
Credit:	The vendor reported this issue.
Vulnerable:	Juniper Junos 14.2R3 Juniper Junos 14.2R2 Juniper Junos 14.2R1 Juniper Junos 14.1X53-D50 Juniper Junos 14.1X53-D47 Juniper Junos 14.1X53-D45 Juniper Junos 14.1X53-D44 Juniper Junos 14.1X53-D42 Juniper Junos 14.1X53-D40 Juniper Junos 14.1X53-D35 Juniper Junos 14.1X53-D34 Juniper Junos 14.1X53-D30 Juniper Junos 14.1X53-D28 Juniper Junos 14.1X53-D26 Juniper Junos 14.1X53-D25 Juniper Junos 14.1X53-D20 Juniper Junos 14.1X53-D18 Juniper Junos 14.1X53-D16 Juniper Junos 14.1X53-D122 Juniper Junos 14.1X53-D12 Juniper Junos 14.1X53-D107 Juniper Junos 14.1X53-D10 Juniper Junos 14.1X53 Juniper Junos 14.1R7 Juniper Junos 14.1R6 Juniper Junos 14.1R5 Juniper Junos 14.1R4 Juniper Junos 14.1R3 Juniper JUNOS 14.1R2 Juniper Junos 14.1R1 Juniper Junos 14.1
Not Vulnerable:	Juniper Junos 14.2R4 Juniper Junos 14.1X53-D48 Juniper Junos 14.1X53-D130 Juniper Junos 14.1R9 Juniper Junos 14.1R8-S5

Juniper Junos CVE-2018-0050 Denial of Service Vulnerability

Juniper Junos is prone to a denial-of-service vulnerability.

An attacker can exploit this issue to cause the RPD to crash, effectively denying service to legitimate users.

Juniper Junos CVE-2018-0050 Denial of Service Vulnerability

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Juniper Junos CVE-2018-0050 Denial of Service Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

Juniper Junos CVE-2018-0050 Denial of Service Vulnerability

References:

• Juniper HomePage (Juniper)
  
• Junos Homepage (Juniper Networks)
  
• 2018-10 Security Bulletin: Junos OS: Receipt of a malformed MPLS RSVP packet lea (Juniper)