CVE-2019-0012 : Vulnerability Insights and Analysis
Discover the impact of CVE-2019-0012, a Juniper Networks Junos OS vulnerability allowing a DoS attack when configured as a VPLS PE. Learn about affected versions and mitigation steps.
A vulnerability in Juniper Networks Junos OS can lead to a denial of service (DoS) condition when configured as a VPLS PE due to a specific BGP message causing the rpd process to crash and restart.
Understanding CVE-2019-0012
This CVE involves a vulnerability in the BGP function of Juniper Networks Junos OS when configured as a VPLS PE, potentially leading to a DoS situation.
What is CVE-2019-0012?
The vulnerability allows an attacker to crash and restart the routing protocol daemon (rpd) process by crafting a specific BGP message, resulting in a DoS condition.
The Impact of CVE-2019-0012
- CVSS Base Score: 7.5 (High)
- Attack Vector: Network
- Availability Impact: High
- Attack Complexity: Low
- Privileges Required: None
- Scope: Unchanged
- Vector String: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Technical Details of CVE-2019-0012
This section provides detailed technical information about the vulnerability.
Vulnerability Description
- The vulnerability affects Juniper Networks Junos OS configured as a VPLS PE when a specific BGP message is received, causing the rpd process to crash and restart.
Affected Systems and Versions
- Affected versions include 12.1X46, 12.3, 12.3X48, 14.1X53, 15.1, 15.1X49, 15.1X53, 16.1, 16.2, 17.1, 17.2, 17.3, 17.4, and 18.1 prior to their respective software updates.
Exploitation Mechanism
- The vulnerability can be exploited by creating a specific BGP message that triggers the crash and restart of the rpd process.
Mitigation and Prevention
Learn how to mitigate and prevent the CVE-2019-0012 vulnerability.
Immediate Steps to Take
- Update to the patched software releases provided by Juniper Networks.
Long-Term Security Practices
- Regularly update Junos OS to the latest versions to ensure protection against known vulnerabilities.
Patching and Updates
- Install the following software releases to address the issue: Junos OS 12.1X46-D81, 12.3R12-S12, 12.3X48-D76, 15.1F6-S12, 15.1R7-S2, 15.1X49-D150, 15.1X53-D235, 15.1X53-D495, 15.1X53-D590, 15.1X53-D68, 16.1R3-S10, 16.1R4-S12, 16.1R6-S6, 16.1R7-S1, 16.2R2-S7, 17.1R2-S9, 17.1R3, 17.2R1-S7, 17.2R2-S6, 17.2R3, 17.3R2-S4, 17.3R3, 17.4R1-S5, 17.4R2, 18.1R2-S3, 18.1R3, 18.2R1, 18.2X75-D10, and all subsequent releases.