Skip to main content

Juniper Junos IPv6 Over IPv4 Tunnel Security Policy Bypass Vulnerability

Last Update Date: 18 Nov 2011 15:00 Release Date: 18 Nov 2011 5793 Views

RISK: Medium Risk

TYPE: Operating Systems - Networks OS

TYPE: Networks OS

A vulnerability has been identified in Juniper Junos, which can be exploited by malicious people to bypass certain security restrictions.


The vulnerability is caused due to an error when enforcing security policies on IPv6 over IPv4 tunnels. This can lead to certain security policies not being enforced properly on IPv6 datagrams.


Impact

  • Security Restriction Bypass

System / Technologies affected

  • Juniper Junos 10.x

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to version 10.2R3.

Vulnerability Identifier

  • No CVE information is available

Source


Related Link