{"id":21838,"date":"2021-04-22T16:37:33","date_gmt":"2021-04-22T08:37:33","guid":{"rendered":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/?p=21838"},"modified":"2021-04-22T16:37:33","modified_gmt":"2021-04-22T08:37:33","slug":"%e3%80%90%e6%bc%8f%e6%b4%9e%e9%a0%90%e8%ad%a6%e3%80%91juniper%e4%bd%9c%e6%a5%ad%e7%b3%bb%e7%b5%b1junos-os%e5%90%ab%e6%9c%89%e7%b7%a8%e8%99%9fcve-2021-0254%e7%9a%84%e5%ae%89%e5%85%a8%e6%bc%8f%e6%b4%9e","status":"publish","type":"post","link":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/archives\/21838","title":{"rendered":"\u3010\u6f0f\u6d1e\u9810\u8b66\u3011Juniper\u4f5c\u696d\u7cfb\u7d71Junos OS\u542b\u6709\u7de8\u865fCVE-2021-0254\u7684\u5b89\u5168\u6f0f\u6d1e\uff0c\u653b\u64ca\u8005\u4e00\u65e6\u958b\u63a1\u6210\u529f\uff0c\u4fbf\u80fd\u5c0e\u81f4\u8a2d\u5099\u65b7\u7dda\u6216\u57f7\u884c\u4efb\u610f\u7a0b\u5f0f\u78bc\uff0cJuniper\u65bc4\u670814\u65e5\u91dd\u5c0d\u9019\u9805\u6f0f\u6d1e\u91cb\u51fa\u4fee\u88dc\u7a0b\u5f0f"},"content":{"rendered":"<h3>Juniper OS\u91cd\u5927\u6f0f\u6d1e\u6050\u5f15\u767c\u8a2d\u5099\u65b7\u7dda\u6216\u88ab\u52ab\u6301<\/h3>\n<p>Juniper\u4f5c\u696d\u7cfb\u7d71Junos OS\u542b\u6709\u7de8\u865fCVE-2021-0254\u7684\u5b89\u5168\u6f0f\u6d1e\uff0c<wbr><\/wbr>\u653b\u64ca\u8005\u4e00\u65e6\u958b\u63a1\u6210\u529f\uff0c\u4fbf\u80fd\u5c0e\u81f4\u8a2d\u5099\u65b7\u7dda\u6216\u57f7\u884c\u4efb\u610f\u7a0b\u5f0f\u78bc\uff0cJun<wbr><\/wbr>iper\u65bc4\u670814\u65e5\u91dd\u5c0d\u9019\u9805\u6f0f\u6d1e\u91cb\u51fa\u4fee\u88dc\u7a0b\u5f0f<\/p>\n<p>\u7db2\u8def\u8a2d\u5099\u5546Juniper\u767c\u5e03\u5b89\u5168\u516c\u544a\uff0c\u4ee5\u4fee\u88dc\u4f5c\u696d\u7cfb\u7d71Juno<wbr><\/wbr>s OS\u4e00\u9805\u53ef\u80fd\u5f15\u767c\u8a2d\u5099\u65b7\u7dda\u6216\u57f7\u884c\u4efb\u610f\u7a0b\u5f0f\u78bc\u7684\u6f0f\u6d1e\u3002<\/p>\n<p>CVE-2021-0254\u662fJuniper\u8a2d\u5099\u5e95\u5c64\u4f5c\u696d\u7cfb\u7d71J<wbr><\/wbr>unos OS\u4e0a\u7684\u7de9\u885d\u5340\u5927\u5c0f\u6aa2\u9a57\uff08buffer size validation\uff09\u6f0f\u6d1e\u3002\u554f\u984c\u51fa\u5728overlayd\u7cbe\u9748\u7a0b\u5f0f<wbr><\/wbr>\u8655\u7406\u50b3\u5230\u8986\u84cb\u7db2\u8def\u7684Overlay OAM\uff08Operations, Administration, and Maintenance\uff09\u5c01\u5305\uff0c\u4f8b\u5982ping\u6216tracerou<wbr><\/wbr>te\u6642\u6aa2\u67e5\u4e0d\u7576\uff0c\u5c0e\u81f4\u7de9\u885d\u6ea2\u4f4d\u3002\u7531\u65bc\u8a72\u670d\u52d9\u9810\u8a2d\u4ee5\u6839\u6b0a\u9650\u57f7\u884c\uff0c<wbr><\/wbr>\u53ef\u5728port 4789\u807d\u53d6UDP\u9023\u7dda\u5167\u5bb9\uff0c\u653b\u64ca\u8005\u53ef\u50b3\u9001\u60e1\u610f\u5c01\u5305\u89f8\u767c\u6f0f\u6d1e\uff0c<wbr><\/wbr>\u9020\u6210\u9060\u7aef\u7a0b\u5f0f\u78bc\u57f7\u884c\uff08RCE\uff09\uff0c\u6216\u662f\u90e8\u4efd\u963b\u65b7\u670d\u52d9\uff08Denial of Service\uff0cDoS\uff09\u3002RCE\u6700\u56b4\u91cd\u53ef\u8b93\u653b\u64ca\u8005\u52ab\u6301\u9019\u81fa\u7cfb\u7d71<wbr><\/wbr>\u3002\u5c01\u5305\u56de\u689d\u53ca\u5c01\u5305\u8655\u7406\u60c5\u5f62\u6301\u7e8c\uff0c\u5c07\u5c0e\u81f4DoS\u7684\u60c5\u5f62\u6642\u9593\u62c9\u9577\u3002<\/p>\n<h4><strong>\u672c\u6f0f\u6d1eCVSS 3.1\u98a8\u96aa\u5c64\u7d1a\u90549.8\uff0c\u5c6c\u91cd\u5927\u98a8\u96aa\u3002<\/strong><\/h4>\n<p>Overlayd\u670d\u52d9\u5728Juniper MX\u3001ACX\u548cQFX\u7cfb\u5217\u5e73\u81fa\u4e0a\u9810\u8a2d\u57f7\u884c\uff0c<wbr><\/wbr>\u662f\u6700\u4e3b\u8981\u7684\u53d7\u5f71\u97ff\u7522\u54c1\uff0c\u5176\u4ed6\u5e73\u81fa\u82e5\u8a2d\u5b9a\u4e86VXLAN\uff08Virtu<wbr><\/wbr>al Extensible LAN\uff09\u8986\u84cb\u7db2\u8def\u8005\u4e5f\u5c07\u66dd\u96aa\u3002<\/p>\n<p>\u9019\u9805\u6f0f\u6d1e\u5f71\u97ffJunos OS\u773e\u591a\u7248\u672c\uff0c\u5305\u62ec15.1X4\u300115.1\u300117.3\u300117.4<wbr><\/wbr>\u300118.1\u300118.2\u300118.3\u300118.4\u300119.1\u300119.2<wbr><\/wbr>\u300119.3\u300119.4\u300120.1\u300120.2\u548c20.3\u3002Juni<wbr><\/wbr>per\u4e5f\u5df2\u5206\u5225\u91dd\u5c0d\u9019\u4e9b\u7248\u672c\u91cb\u51fa\u4e86\u66f4\u65b0\u7248\u3002<\/p>\n<p>\u5982\u679c\u4f01\u696d\u7528\u6236\u4f86\u4e0d\u53ca\u5b89\u88dd\u4fee\u88dc\u7a0b\u5f0f\uff0cJuniper\u5efa\u8b70\u8a2d\u5099\u5b58\u53d6\u8868<wbr><\/wbr>\u6216\u9632\u706b\u7246\u904e\u6ffe\u540d\u55ae\uff0c\u50c5\u5141\u8a31\u4f86\u81ea\u4fe1\u8cf4\u7db2\u8def\u53ca\u4e3b\u6a5f\u7684UDP\u9023\u7dda\uff0c<wbr><\/wbr>\u6b64\u5916\uff0c\u4e5f\u6700\u597d\u95dc\u9589Overlay OAM\u5c01\u5305\u3002<\/p>\n<p>\u8cc7\u6599\u4f86\u6e90:\u00a0<a href=\"https:\/\/www.ithome.com.tw\/news\/143943\" target=\"_blank\" rel=\"noopener noreferrer\" data-saferedirecturl=\"https:\/\/www.google.com\/url?q=https:\/\/www.ithome.com.tw\/news\/143943&amp;source=gmail&amp;ust=1619166916744000&amp;usg=AFQjCNG5MlL7kqj3zZe2_UA6iLX_R1Sh8w\">https:\/\/www.ithome.com.tw\/<wbr><\/wbr>news\/143943<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Juniper OS\u91cd\u5927\u6f0f\u6d1e\u6050\u5f15\u767c\u8a2d\u5099\u65b7\u7dda\u6216\u88ab\u52ab\u6301 <\/p>\n<p>Juniper\u4f5c\u696d\u7cfb\u7d71Junos OS\u542b\u6709\u7de8\u865fCVE-2021-0254\u7684\u5b89\u5168\u6f0f\u6d1e\uff0c\u653b\u64ca\u8005\u4e00\u65e6\u958b\u63a1\u6210\u529f\uff0c\u4fbf\u80fd\u5c0e\u81f4\u8a2d\u5099\u65b7\u7dda\u6216\u57f7\u884c\u4efb\u610f\u7a0b\u5f0f\u78bc\uff0cJuniper\u65bc4\u670814\u65e5\u91dd\u5c0d\u9019\u9805\u6f0f\u6d1e\u91cb\u51fa\u4fee\u88dc\u7a0b\u5f0f<\/p>\n<p>\u7db2\u8def\u8a2d\u5099\u5546Juniper\u767c\u5e03\u5b89\u5168\u516c\u544a\uff0c\u4ee5\u4fee\u88dc\u4f5c\u696d\u7cfb\u7d71Junos OS\u4e00\u9805\u53ef\u80fd\u5f15\u767c\u8a2d\u5099\u65b7\u7dda\u6216\u57f7\u884c\u4efb\u610f\u7a0b\u5f0f\u78bc\u7684\u6f0f\u6d1e\u3002<\/p>\n<p>CVE-2021-0254\u662fJuniper\u8a2d\u5099\u5e95\u5c64\u4f5c\u696d\u7cfb\u7d71Junos OS\u4e0a\u7684\u7de9\u885d\u5340\u5927\u5c0f\u6aa2\u9a57\uff08buffer size validation\uff09\u6f0f\u6d1e\u3002\u554f\u984c\u51fa\u5728overlayd\u7cbe\u9748\u7a0b\u5f0f\u8655\u7406\u50b3\u5230\u8986\u84cb\u7db2\u8def\u7684Overlay OAM\uff08Operations, Administration, and Maintenance\uff09\u5c01\u5305\uff0c\u4f8b\u5982ping\u6216traceroute\u6642\u6aa2\u67e5\u4e0d\u7576\uff0c\u5c0e\u81f4\u7de9\u885d\u6ea2\u4f4d\u3002\u7531\u65bc\u8a72\u670d\u52d9\u9810\u8a2d\u4ee5\u6839\u6b0a\u9650\u57f7\u884c\uff0c\u53ef\u5728port 4789\u807d\u53d6UDP\u9023\u7dda\u5167\u5bb9\uff0c\u653b\u64ca\u8005\u53ef\u50b3\u9001\u60e1\u610f\u5c01\u5305\u89f8\u767c\u6f0f\u6d1e\uff0c\u9020\u6210\u9060\u7aef\u7a0b\u5f0f\u78bc\u57f7\u884c\uff08RCE\uff09\uff0c\u6216\u662f\u90e8\u4efd\u963b\u65b7\u670d\u52d9\uff08Denial of Service\uff0cDoS\uff09\u3002RCE\u6700\u56b4\u91cd\u53ef\u8b93\u653b\u64ca\u8005\u52ab\u6301\u9019\u81fa\u7cfb\u7d71\u3002\u5c01\u5305\u56de\u689d\u53ca\u5c01\u5305\u8655\u7406\u60c5\u5f62\u6301\u7e8c\uff0c\u5c07\u5c0e\u81f4DoS\u7684\u60c5\u5f62\u6642\u9593\u62c9\u9577\u3002<\/p>\n<p> \u672c\u6f0f\u6d1eCVSS 3.1\u98a8\u96aa\u5c64\u7d1a\u90549.8\uff0c\u5c6c\u91cd\u5927\u98a8\u96aa\u3002 <\/p>\n<p>Overlayd\u670d\u52d9\u5728Juniper MX\u3001ACX\u548cQFX\u7cfb\u5217\u5e73\u81fa\u4e0a\u9810\u8a2d\u57f7\u884c\uff0c\u662f\u6700\u4e3b\u8981\u7684\u53d7\u5f71\u97ff\u7522\u54c1\uff0c\u5176\u4ed6\u5e73\u81fa\u82e5\u8a2d\u5b9a\u4e86VXLAN\uff08Virtual Extensible LAN\uff09\u8986\u84cb\u7db2\u8def\u8005\u4e5f\u5c07\u66dd\u96aa\u3002<\/p>\n<p>\u9019\u9805\u6f0f\u6d1e\u5f71\u97ffJunos OS\u773e\u591a\u7248\u672c\uff0c\u5305\u62ec15.1X4\u300115.1\u300117.3\u300117.4\u300118.1\u300118.2\u300118.3\u300118.4\u300119.1\u300119.2\u300119.3\u300119.4\u300120.1\u300120.2\u548c20.3\u3002Juniper\u4e5f\u5df2\u5206\u5225\u91dd\u5c0d\u9019\u4e9b\u7248\u672c\u91cb\u51fa\u4e86\u66f4\u65b0\u7248\u3002<\/p>\n<p>\u5982\u679c\u4f01\u696d\u7528\u6236\u4f86\u4e0d\u53ca\u5b89\u88dd\u4fee\u88dc\u7a0b\u5f0f\uff0cJuniper\u5efa\u8b70\u8a2d\u5099\u5b58\u53d6\u8868\u6216\u9632\u706b\u7246\u904e\u6ffe\u540d\u55ae\uff0c\u50c5\u5141\u8a31\u4f86\u81ea\u4fe1\u8cf4\u7db2\u8def\u53ca\u4e3b\u6a5f\u7684UDP\u9023\u7dda\uff0c\u6b64\u5916\uff0c\u4e5f\u6700\u597d\u95dc\u9589Overlay OAM\u5c01\u5305\u3002<\/p>\n<p>\u8cc7\u6599\u4f86\u6e90: https:\/\/www.ithome.com.tw\/news\/143943<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[6],"tags":[],"_links":{"self":[{"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/posts\/21838"}],"collection":[{"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/comments?post=21838"}],"version-history":[{"count":0,"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/posts\/21838\/revisions"}],"wp:attachment":[{"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/media?parent=21838"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/categories?post=21838"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/tags?post=21838"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}