A Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in the advanced forwarding toolkit (evo-aftmand/evo-pfemand) of Juniper Networks Junos OS Evolved on PTX Series or QFX5000 Series allows an unauthenticated, adjacent attacker to cause a Denial of Service (DoS).An attacker sending crafted multicast packets will cause line cards running evo-aftmand/evo-pfemand to crash and restart or non-line card devices to crash and restart. Continued receipt and processing of these packets will sustain the Denial of Service (DoS) condition. This issue affects Junos OS Evolved PTX Series: * All versions before 22.4R3-S8-EVO, * from 23.2 before 23.2R2-S5-EVO, * from 23.4 before 23.4R2-EVO, * from 24.2 before 24.2R2-EVO, * from 24.4 before 24.4R2-EVO. This issue affects Junos OS Evolved on QFX5000 Series: * 22.2-EVO version before 22.2R3-S7-EVO, * 22.4-EVO version before 22.4R3-S7-EVO, * 23.2-EVO versions before 23.2R2-S4-EVO, * 23.4-EVO versions before 23.4R2-S5-EVO, * 24.2-EVO versions before 24.2R2-S1-EVO, * 24.4-EVO versions before 24.4R1-S3-EVO, 24.4R2-EVO. This issue does not affect Junos OS Evolved on QFX5000 Series versions before: 21.2R2-S1-EVO, 21.2R3-EVO, 21.3R2-EVO, 21.4R1-EVO, and 22.1R1-EVO.
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:U/V:C/RE:M/U:AmberJuniper Junos Os Evolved
OSJuniper22.222.423.223.424.224.4< 22.4Juniper Ptx10001 36mr
HWJuniperwszystkie wersjeJuniper Ptx10002 36qdd
HWJuniperwszystkie wersjeJuniper Ptx10003
HWJuniperwszystkie wersjeJuniper Ptx10004
HWJuniperwszystkie wersjeJuniper Ptx10008
HWJuniperwszystkie wersjeJuniper Ptx10016
HWJuniperwszystkie wersjeJuniper Ptx12008
HWJuniperwszystkie wersjeJuniper Qfx5110
HWJuniperwszystkie wersjeJuniper Qfx5120
HWJuniperwszystkie wersjeJuniper Qfx5130
HWJuniperwszystkie wersjeJuniper Qfx5200
HWJuniperwszystkie wersjeJuniper Qfx5210
HWJuniperwszystkie wersjeJuniper Qfx5220
HWJuniperwszystkie wersjeJuniper Qfx5230 64cd
HWJuniperwszystkie wersjeJuniper Qfx5240
HWJuniperwszystkie wersjeJuniper Qfx5241
HWJuniperwszystkie wersjeJuniper Qfx5700
HWJuniperwszystkie wersje
Related vulnerabilities
RCE jako root w Juniper Junos OS Evolved — błędne uprawnienia do krytycznego zasobu
An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Rout...
A certain sequence of valid BGP or IPv6 BFD packets may trigger a stack based buffer overflow in the Junos OS ...
A certain crafted HTTP packet can trigger an uninitialized function pointer deference vulnerability in the Pac...
An Incorrect Synchronization vulnerability in the management daemon (mgd) of Juniper Networks Junos OS and Jun...