Juniper Networks Junos OS 產品存在安全性弱點，可能使遠端攻擊者利用該弱點造成阻斷服務，官方已發布更新。

目前已知會受到影響的版本為 Junos OS 12.1X46, 12.3, 12.3X48, 14.1X53, 15.1, 15.1F5, 15.1F6, 15.1F7, 15.1X8, 15.1X49, 15.1X53, 15.1X54, 16.1, 16.1X65, 16.2, 17.1, 17.2, 17.2X75, 17.3, 17.4, 18.1, 18.2X75 版本。

• Junos OS 12.1X46, 12.3, 12.3X48, 14.1X53, 15.1, 15.1F5, 15.1F6, 15.1F7, 15.1X8, 15.1X49, 15.1X53, 15.1X54, 16.1, 16.1X65, 16.2, 17.1, 17.2, 17.2X75, 17.3, 17.4, 18.1, 18.2X75 版本
• Contrail Service Orchestration
• Junos Space 18.1R1 之前版本

請參考 Juniper 官網下載更新至建議最新版本

• Junos OS 12.1X46-D45, 12.1X46-D67, 12.1X46-D76, 12.1X46-D77, 12.3R11, 12.3R12-S10, 12.3X48-D20, 12.3X48-D25, 12.3X48-D55, 12.3X48-D66, 12.3X48-D70, 12.3X54-D34, 14.1X53-D30, 14.1X53-D47, 14.1X53-D130*, 15.1F5-S5, 15.1F6-S1, 15.1F6-S10, 15.1F6-S11*, 15.1F7, 15.1R4-S5, 15.1R4-S9, 15.1R5, 15.1R6-S6, 15.1R7, 15.1R7-S1, 15.1R8, 15.1X8.3, 15.1X49-D20, 15.1X49-D35, 15.1X49-D110, 15.1X49-D131, 15.1X49-D140, 15.1X53-D47, 15.1X53-D59, 15.1X53-D60, 15.1X53-D67, 15.1X53-D233, 15.1X53-D234, 15.1X53-D470, 15.1X53-D471, 15.1X53-D490, 15.1X54-D70, 16.1R2, 16.1R3, 16.1R3-S8, 16.1R3-S9, 16.1R4-S8, 16.1R4-S9, 16.1R4-S10, 16.1R5-S4, 16.1R6-S1, 16.1R6-S3, 16.1R6-S4, 16.1R7, 16.1X65-D46, 16.1X65-D47, 16.2R1, 16.2R1-S6, 16.2R1-S7, 16.2R2-S5, 16.2R2-S6, 16.2R3, 17.1R1-S7, 17.1R2-S6, 17.1R2-S7, 17.1R3, 17.2R1-S4, 17.2R1-S5, 17.2R1-S6, 17.2R2-S3, 17.2R2-S4, 17.2R2-S5, 17.2R3, 17.2X75-D70, 17.2X75-D91, 17.2X75-D100, 17.2X75-D110, 17.2X75-D90, 17.2X75-D100, 17.2X75-D110, 17.3R1, 17.3R1-S4, 17.3R2, 17.3R2-S1, 17.3R2-S2, 17.3R3, 17.4R1-S2, 17.4R1-S3, 17.4R1-S4, 17.4R2, 18.1R1, 18.1R1-S1*, 18.1R2, 18.1X75-D10 18.2R1, 18.2X75-D5, 18.2X75-D10 (含)之後版本
• Junos Space 18.1R1 (含)之後版本

近日 Juniper 發布安全更新，可能使遠端攻擊者利用該弱點造成阻斷服務。

1.Junos OS 中的 rpcbind 存在 use-after-free (UAF)弱點，使攻擊者可針對 rpcbind 進行阻斷服務攻擊。 2.Junos OS 中的 shell session 存在不當的權限管理，可使無權限的攻擊者透過身分驗證取得系統的控制權。 3.當 Junos OS 設備進行更新或重啟時，可能讓防火牆的過濾器設定無法正常生效。 4.當 SRX Series 設備使用 HTTP/HTTPS 傳遞憑證時，在客戶端的初始 HTTP/HTTPS session 中傳送憑證存在風險，而後續發出 HTTP/HTTPS 請求時可能被攻擊者藉由中間人攻擊 (man-in-the-middle attack) 或已被入侵之設備竊取憑證。 另有其他尚未列出之弱點，詳細資訊請參考Juniper 官方網站。

US-CERT(2018/07/12)
Juniper Security Advisories(2018/07/12)
JSA10860(2018/07/12)
JSA10857(2018/07/12)
JSA10859(2018/07/12)
JSA10858(2018/07/12)
JSA10861(2018/07/12)
JSA10863(2018/07/12)
JSA10865(2018/07/12)
JSA10864(2018/07/12)
JSA10866(2018/07/12)
JSA10868(2018/07/12)
JSA10869(2018/07/12)
JSA10871(2018/07/12)
JSA10873(2018/07/12)
JSA10872(2018/07/12)
JSA10874(2018/07/12)
JSA10875(2018/07/12)