CVE-2004-0467 — Juniper Junos vulnerability

4 documents4 sources

Severity

5.0MEDIUMNVD

EPSS

5.8%

top 9.49%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Juniper Junos Juniper Junos OS

Timeline

PublishedDec 31

Latest updateApr 29

Description

Juniper JUNOS 5.x through JUNOS 7.x allows remote attackers to cause a denial of service (routing disabled) via a large number of MPLS packets, which are not filtered or verified before being sent to the Routing Engine, which reduces the speed at which other packets are processed.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

▶NVDjuniper/junos11 versions+10

▶juniperjuniper/junos_os

Patches

Patch: www.kb.cert.org ↗Patch: www.kb.cert.org ↗Patch: www.niscc.gov.uk ↗

🔴Vulnerability Details

GHSA

GHSA-hq6v-cqr3-x8q4: Juniper JUNOS 5↗2022-04-29

▶

💥Exploits & PoCs

Exploit-DB

Apple Mac OSX 10.4.8 (8L2127) - 'crashdump' Local Privilege Escalation↗2007-01-29

▶

📋Vendor Advisories

Juniper

CVE-2004-0467: Juniper JUNOS 5.x through JUNOS 7.x allows remote attackers to cause a denial of service (routing disabled) via a large number of MPLS packets, which↗2004-12-31

▶