Details of VAR-201704-0733

ID

VAR-201704-0733

CVE

CVE-2017-2312

TITLE

Juniper Networks Works with device products Junos OS Resource management vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2017-003624

DESCRIPTION

On Juniper Networks devices running Junos OS affected versions and with LDP enabled, a specific LDP packet destined to the RE (Routing Engine) will consume a small amount of the memory allocated for the rpd (routing protocol daemon) process. Over time, repeatedly receiving this type of LDP packet(s) will cause the memory to exhaust and the rpd process to crash and restart. It is not possible to free up the memory that has been consumed without restarting the rpd process. This issue affects Junos OS based devices with either IPv4 or IPv6 LDP enabled via the [protocols ldp] configuration (the native IPv6 support for LDP is available in Junos OS 16.1 and higher). The interface on which the packet arrives needs to have LDP enabled. The affected Junos versions are: 13.3 prior to 13.3R10; 14.1 prior to 14.1R8; 14.2 prior to 14.2R7-S6 or 14.2R8; 15.1 prior to 15.1F2-S14, 15.1F6-S4, 15.1F7, 15.1R4-S7, 15.1R5; 15.1X49 before 15.1X49-D70; 15.1X53 before 15.1X53-D230, 15.1X53-D63, 15.1X53-D70; 16.1 before 16.1R2. 16.2R1 and all subsequent releases have a resolution for this vulnerability. Juniper Networks Works with device products Junos OS Contains a resource management vulnerability.Service operation interruption (DoS) An attack may be carried out. Juniper Junos is prone to a denial-of-service vulnerability. Attackers can exploit this issue to crash and restart the affected device, denying service to legitimate users. Juniper Junos OS is a set of network operating system of Juniper Networks (Juniper Networks) dedicated to the company's hardware systems. The operating system provides a secure programming interface and Junos SDK

Trust: 1.98

sources: NVD: CVE-2017-2312 // JVNDB: JVNDB-2017-003624 // BID: 97611 // VULHUB: VHN-110515

AFFECTED PRODUCTS

vendor:	juniper	model:	junos	scope:	eq	version:	15.1	Trust: 1.6
vendor:	juniper	model:	junos	scope:	eq	version:	13.3	Trust: 1.6
vendor:	juniper	model:	junos	scope:	eq	version:	14.1	Trust: 1.6
vendor:	juniper	model:	junos	scope:	eq	version:	15.1x49	Trust: 1.0
vendor:	juniper	model:	junos	scope:	eq	version:	15.1x53	Trust: 1.0
vendor:	juniper	model:	junos	scope:	eq	version:	16.1	Trust: 1.0
vendor:	juniper	model:	junos	scope:	eq	version:	14.2	Trust: 1.0
vendor:	juniper	model:	junos os	scope:	-	version:	-	Trust: 0.8
vendor:	juniper	model:	junos 16.1r1	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1x53-d60	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1x53-d40	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1x53-d35	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1x53-d30	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1x53-d20	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1x49-d60	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1x49-d40	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1x49-d30	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1x49-d20	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1x49-d15	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1x49-d10	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1r4	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1r3	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1r2	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1r1	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1f6	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1f5-s2	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1f5	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1f4-s2	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1f4	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1f3	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1f2-s5	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1f2-s2	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1f2	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1f1	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 14.1r7	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 14.1r6-s1	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 14.1r6	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 14.1r5	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 14.1r4-s7	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 14.1r4	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 14.1r3-s9	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 14.1r3-s2	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 14.1r3	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 14.1r2	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 14.1r1	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 13.3r9	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 13.3r8	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 13.3r7-s3	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 13.3r7	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 13.3r6	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 13.3r5	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 13.3r4.6	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 13.3r4	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 13.3r3-s3	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 13.3r3	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 13.3r2-s3	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 13.3r2-s2	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 13.3r2	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 13.3r1.8	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 13.3r1.7	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 13.3r1	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 16.2r1	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 16.1r2	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1x53-d70	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1x53-d63	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1x53-d230	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1x49-d70	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1r5	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1r4-s7	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1f7	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1f6-s4	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1f5-s7	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 15.1f2-s14	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 14.2r8	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 14.2r7-s6	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 14.1x53-d44	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 14.1r8	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 13.3r10	scope:	ne	version:	-	Trust: 0.3

sources: BID: 97611 // JVNDB: JVNDB-2017-003624 // CNNVD: CNNVD-201704-986 // NVD: CVE-2017-2312

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-2312
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2017-2312
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-201704-986
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-110515
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2017-2312
severity:	MEDIUM
baseScore:	6.8
vectorString:	AV:N/AC:L/AU:S/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-110515
severity:	MEDIUM
baseScore:	6.8
vectorString:	AV:N/AC:L/AU:S/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2017-2312
baseSeverity:	MEDIUM
baseScore:	6.5
vectorString:	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	3.6
version:	3.0
Trust: 1.8

sources: VULHUB: VHN-110515 // JVNDB: JVNDB-2017-003624 // CNNVD: CNNVD-201704-986 // NVD: CVE-2017-2312

PROBLEMTYPE DATA

problemtype:	CWE-772	Trust: 1.1
problemtype:	CWE-399	Trust: 0.9

sources: VULHUB: VHN-110515 // JVNDB: JVNDB-2017-003624 // NVD: CVE-2017-2312

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201704-986

TYPE

resource management error

Trust: 0.6

sources: CNNVD: CNNVD-201704-986

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-003624

PATCH

title:	JSA10777	url:	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10777&actp=METADATA	Trust: 0.8
title:	Juniper Networks Junos OS Remediation of resource management error vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=70253	Trust: 0.6

sources: JVNDB: JVNDB-2017-003624 // CNNVD: CNNVD-201704-986

EXTERNAL IDS

db:	NVD	id:	CVE-2017-2312	Trust: 2.8
db:	BID	id:	97611	Trust: 2.0
db:	JUNIPER	id:	JSA10777	Trust: 2.0
db:	SECTRACK	id:	1038252	Trust: 1.7
db:	JVNDB	id:	JVNDB-2017-003624	Trust: 0.8
db:	CNNVD	id:	CNNVD-201704-986	Trust: 0.7
db:	VULHUB	id:	VHN-110515	Trust: 0.1

sources: VULHUB: VHN-110515 // BID: 97611 // JVNDB: JVNDB-2017-003624 // CNNVD: CNNVD-201704-986 // NVD: CVE-2017-2312

REFERENCES

url:	http://www.securityfocus.com/bid/97611	Trust: 1.7
url:	https://kb.juniper.net/jsa10777	Trust: 1.7
url:	http://www.securitytracker.com/id/1038252	Trust: 1.7
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-2312	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2017-2312	Trust: 0.8
url:	http://www.juniper.net/	Trust: 0.3
url:	http://www.juniper.net/us/en/products-services/nos/junos/	Trust: 0.3
url:	https://kb.juniper.net/infocenter/index?page=content&id=jsa10777&cat=sirt_1&actp=list	Trust: 0.3

sources: VULHUB: VHN-110515 // BID: 97611 // JVNDB: JVNDB-2017-003624 // CNNVD: CNNVD-201704-986 // NVD: CVE-2017-2312

CREDITS

The vendor reported this issue.

Trust: 0.3

sources: BID: 97611

SOURCES

db:	VULHUB	id:	VHN-110515
db:	BID	id:	97611
db:	JVNDB	id:	JVNDB-2017-003624
db:	CNNVD	id:	CNNVD-201704-986
db:	NVD	id:	CVE-2017-2312

LAST UPDATE DATE

2025-04-20T23:26:07.437000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-110515	date:	2019-10-03T00:00:00
db:	BID	id:	97611	date:	2017-05-23T16:28:00
db:	JVNDB	id:	JVNDB-2017-003624	date:	2017-05-31T00:00:00
db:	CNNVD	id:	CNNVD-201704-986	date:	2019-10-23T00:00:00
db:	NVD	id:	CVE-2017-2312	date:	2025-04-20T01:37:25.860

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-110515	date:	2017-04-24T00:00:00
db:	BID	id:	97611	date:	2017-04-12T00:00:00
db:	JVNDB	id:	JVNDB-2017-003624	date:	2017-05-31T00:00:00
db:	CNNVD	id:	CNNVD-201704-986	date:	2017-04-12T00:00:00
db:	NVD	id:	CVE-2017-2312	date:	2017-04-24T15:59:00.143