Rewterz Threat Advisory – CVE-2019-0008 – Juniper QFX5000 / EX4300 / EX4600 Junos OS FXPC Buffer Overflow Vulnerability

April 11, 2019

Severity

Medium

Analysis Summary

Certain sequence of valid BGP or IPv6 BFD packets may trigger a stack based buffer overflow in the Junos OS Packet Forwarding Engine manager (FXPC) process on QFX5000 series, EX4300, EX4600 devices. This issue can result in a crash of the fxpc daemon or may potentially lead to remote code execution.

Impact

Denial of Service

Affected Vendors

Juniper

Affected Products

Juniper Junos OS 14.1
Juniper Junos OS 15.1

Remediation

Update or upgrade to version 15.1X53-D235.

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

GitHub Tools Deployed in CrazyHunter Ransomware Campaigns – Active IOCs

North Korean APT Kimsuky aka Black Banshee – Active IOCs

Sophisticated BPFDoor Malware Detected Targeting Linux Systems – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Advisory – CVE-2019-0044 – Juniper SRX5000 Series Junos OS Denial of Service Vulnerability

Rewterz Threat Advisory – CVE-2019-0040 – Juniper Junos OS rpcbind Denial of Service Vulnerability

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.