CVE-2020-1664
published 2020-10-16CVE-2020-1664: A stack buffer overflow vulnerability in the device control daemon (DCD) on Juniper Networks Junos OS allows a low privilege local user to create a Denial of…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
A stack buffer overflow vulnerability in the device control daemon (DCD) on Juniper Networks Junos OS allows a low privilege local user to create a Denial of Service (DoS) against the daemon or execute arbitrary code in the system with root privilege. This issue affects Juniper Networks Junos OS: 17.3 versions prior to 17.3R3-S9; 17.4 versions prior to 17.4R2-S12, 17.4R3-S3; 18.1 versions prior to 18.1R3-S11; 18.2 versions prior to 18.2R3-S6; 18.2X75 versions prior to 18.2X75-D53, 18.2X75-D65; 18.3 versions prior to 18.3R2-S4, 18.3R3-S4; 18.4 versions prior to 18.4R2-S5, 18.4R3-S5; 19.1 versions prior to 19.1R3-S3; 19.2 versions prior to 19.2R1-S5, 19.2R3; 19.3 versions prior to 19.3R2-S4, 19.3R3; 19.4 versions prior to 19.4R1-S3, 19.4R2-S2, 19.4R3; 20.1 versions prior to 20.1R1-S4, 20.1R2; 20.2 versions prior to 20.2R1-S1, 20.2R2. Versions of Junos OS prior to 17.3 are unaffected by this vulnerability.
Affected
27 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos_os | — | — |
| juniper_networks | junos_os | >= 17.3 < 17.3R3-S9 | 17.3R3-S9 |
| juniper_networks | junos_os | >= 17.4 < 17.4R2-S12, 17.4R3-S3 | 17.4R2-S12, 17.4R3-S3 |
| juniper_networks | junos_os | >= 18.1 < 18.1R3-S11 | 18.1R3-S11 |
| juniper_networks | junos_os | >= 18.2 < 18.2R3-S6 | 18.2R3-S6 |
| juniper_networks | junos_os | >= 18.2X75 < 18.2X75-D53, 18.2X75-D65 | 18.2X75-D53, 18.2X75-D65 |
| juniper_networks | junos_os | >= 18.3 < 18.3R2-S4, 18.3R3-S4 | 18.3R2-S4, 18.3R3-S4 |
| juniper_networks | junos_os | >= 18.4 < 18.4R2-S5, 18.4R3-S5 | 18.4R2-S5, 18.4R3-S5 |
| juniper_networks | junos_os | >= 19.1 < 19.1R3-S3 | 19.1R3-S3 |
| juniper_networks | junos_os | >= 19.2 < 19.2R1-S5, 19.2R3 | 19.2R1-S5, 19.2R3 |
| juniper_networks | junos_os | >= 19.3 < 19.3R2-S4, 19.3R3 | 19.3R2-S4, 19.3R3 |
| juniper_networks | junos_os | >= 19.4 < 19.4R1-S3, 19.4R2-S2, 19.4R3 | 19.4R1-S3, 19.4R2-S2, 19.4R3 |
Juniper
CVE-2020-1664: A stack buffer overflow vulnerability in the device control daemon (DCD) on Juniper Networks Junos OS allows a low privilege local user to create a De
vendor_juniper·2020-10-16·CVSS 7.8
CVE-2020-1664 [HIGH] CWE-121 CVE-2020-1664: A stack buffer overflow vulnerability in the device control daemon (DCD) on Juniper Networks Junos OS allows a low privilege local user to create a De
CVE-2020-1664: A stack buffer overflow vulnerability in the device control daemon (DCD) on Juniper Networks Junos OS allows a low privilege local user to create a Denial of Service (DoS) against the daemon or execute arbitrary code in the system with root privilege. This issue affects Juniper Networks Junos OS: 17.3 versions prior to 17.3R3-S9; 17.4 versions prior to 17.4R2-S12, 17.4R3-S3; 18.1 versions prior to 18.1R3-S11; 18.2 versions prior to 18.2R3-S6; 18.2X75 versions prior to 18.2X75-D53, 18.2X75-D65; 18.3 versions prior to 18.3R2-S4, 18.3R3-S4; 18.4 versions prior to 18.4R2-S5, 18.4R3-S5; 19.1 versions prior to 19.1R3-S3; 19.2 versions prior to 19.2R1-S5, 19.2R3; 19.3 versions prior to 19.3R2-S4, 19.3R3; 19.4 versions prior to 19.4R1-S3, 19.4R2-S2, 19.4R3; 20.1 versions prior to 20
GHSA
GHSA-2r5v-65wf-9f8p: A stack buffer overflow vulnerability in the device control daemon (DCD) on Juniper Networks Junos OS allows a low privilege local user to create a De
ghsa_unreviewed·2022-05-24
CVE-2020-1664 [HIGH] CWE-787 GHSA-2r5v-65wf-9f8p: A stack buffer overflow vulnerability in the device control daemon (DCD) on Juniper Networks Junos OS allows a low privilege local user to create a De
A stack buffer overflow vulnerability in the device control daemon (DCD) on Juniper Networks Junos OS allows a low privilege local user to create a Denial of Service (DoS) against the daemon or execute arbitrary code in the system with root privilege. This issue affects Juniper Networks Junos OS: 17.3 versions prior to 17.3R3-S9; 17.4 versions prior to 17.4R2-S12, 17.4R3-S3; 18.1 versions prior to 18.1R3-S11; 18.2 versions prior to 18.2R3-S6; 18.2X75 versions prior to 18.2X75-D53, 18.2X75-D65; 18.3 versions prior to 18.3R2-S4, 18.3R3-S4; 18.4 versions prior to 18.4R2-S5, 18.4R3-S5; 19.1 versions prior to 19.1R3-S3; 19.2 versions prior to 19.2R1-S5, 19.2R3; 19.3 versions prior to 19.3R2-S4, 19.3R3; 19.4 versions prior to 19.4R1-S3, 19.4R2-S2, 19.4R3; 20.1 versions prior to 20.1R1-S4, 20.1R2
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2020-10-16
Published