Flaw in Junos OS detected, fixed
Certain combinations of Junos OS CLI commands and arguments have been found to be exploitable.
The risk level is "high" for multiple privilege escalation vulnerabilities that can affect any product or platform running Junos OS, according to security bulletin CVE-2016-1271 from Juniper Networks.
"Certain combinations of Junos OS CLI commands and arguments have been found to be exploitable in a way that can allow root access to the operating system," the researchers revealed. The bug could enable any user granted permission to run these CLI commands to gain elevated privileges which, in turn, could allow them to gain complete control of the device.
Juniper said the flaw was detected during internal product security testing and is not aware of any malicious exploitation.
The team advised users to "employ access lists or firewall filters to limit access to the router's CLI only from trusted hosts [and] restrict access to the CLI to only highly trusted administrators."
Fixed software is available upon request from the company.