- 2010-01-08 (金) 10:54
- ネットワークねた
A report has been received from Juniper at 4:25pm under bulletin PSN-2010-01-623 that a crafted malformed TCP field option in the TCP header of a packet will cause the JUNOS kernel to core (crash). In other words the kernel on the network device (gateway router) will crash and reboot if a packet containing this crafted option is received on a listening TCP port. The JUNOS firewall filter is unable to filter a TCP packet with this issue. Juniper claims this issue as exploit was identified during investigation of a vendor interoperability issue.
Praetorian Prefect | JUNOS (Juniper) Flaw Exposes Core Routers to Kernel Crash
JUNOSに深刻なバグが発見されたようです。
TCPヘッダを細工したパケットを受け取ると、カーネルがクラッシュしリブートが発生する模様。
該当OSは2009/1/28以降の以下のOSです。
- JUNOS 10.x (Removed from the bulletin today, 01/07/09, so assumed to not be affected)
- JUNOS 9.x
- JUNOS 7.x
- JUNOS 8.x
- JUNOS 6.x
- JUNOS 5.x
- JUNOS 3.x
- JUNOS 4.x
って、ほぼすべてですな!
すでに実際に試した方もいるようで、簡単に再現できてしまうようです。
Ooohhh… How about this: “when a specifically crafted TCP option is received on a listening TCP port“?It’s more than enough! We have 256 guesses
[Positive Technologies] Research Lab: Juniper JUNOS Remote Kernel Crash Flaw!
関連記事:
- Newer: Wi-Fiの電波を電気に変換して充電するデバイス
- Older: キャノンマーケティングジャパンの採用に関するお知らせが興味深い
Comments:0
Trackbacks:0
- Trackback URL for this entry
- http://www.itbook.info/web/2010/01/junos-%e3%81%ab%e6%b7%b1%e5%88%bb%e3%81%aa%e8%84%86%e5%bc%b1%e6%80%a7%e3%81%8c%e8%a6%8b%e3%81%a4%e3%81%8b%e3%82%8b.html/trackback
- Listed below are links to weblogs that reference
- JUNOS に深刻な脆弱性が見つかる from ネットワークエンジニアを目指してのブログ
