There's a new vulnerability against Juniper routers that needs patching RIGHT NOW. Patrick Nolan has compiled some feedback and advice on managing X Windows security issues. Also, work has started creating on the 2005 Critical Threats list. If you are interested in participating in that work, see the details below. New Juniper Vulnerability: We've got a new vulnerability that has been rumored for a while but is now public.
CERT Security Advisory
"This vulnerability could be exploited either by a directly attached neighboring device or by a remote attacker that can deliver certain packets to the router. Routers running vulnerable JUNOS software are susceptible regardless of the router's configuration. It is not possible to use firewall filters to protect vulnerable routers. This vulnerability is specific to Juniper Networks routers running JUNOS software. Routers that do not run JUNOS software are not susceptible to this vulnerability.
Edited by harrywaldron, 26 January 2005 - 08:41 PM.