CVE-2016-1275 | Vulnerability Database | Aqua Security

Juniper Junos OS before 13.3R9, 14.1R6 before 14.1R6-S1, and 14.1 before 14.1R7, when configured with VPLS routing-instances, allows remote attackers to obtain sensitive mbuf information by injecting a flood of Ethernet frames with IPv6 MAC addresses directly into a connected interface.

Affected Software

Name	Vendor	Start Version	End Version
Junos	Juniper	*	13.3 (including)
Junos	Juniper	14.1 (including)	14.1 (including)
Junos	Juniper	14.1-r1 (including)	14.1-r1 (including)
Junos	Juniper	14.1-r2 (including)	14.1-r2 (including)
Junos	Juniper	14.1-r3 (including)	14.1-r3 (including)
Junos	Juniper	14.1-r4 (including)	14.1-r4 (including)
Junos	Juniper	14.1-r5 (including)	14.1-r5 (including)
Junos	Juniper	14.1-r6 (including)	14.1-r6 (including)

References

http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10750
http://www.securityfocus.com/bid/91758
http://www.securitytracker.com/id/1036301
http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10750
http://www.securityfocus.com/bid/91758
http://www.securitytracker.com/id/1036301

NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-1275
CWE	https://cwe.mitre.org/data/definitions/399.html