CVE-2021-0276

Steel-Belted Radius Carrier Edition: Remote code execution vulnerability when EAP Authentication is configured.

Description

A stack-based Buffer Overflow vulnerability in Juniper Networks SBR Carrier with EAP (Extensible Authentication Protocol) authentication configured, allows an attacker sending specific packets causing the radius daemon to crash resulting with a Denial of Service (DoS) or leading to remote code execution (RCE). By continuously sending this specific packets, an attacker can repeatedly crash the radius daemon, causing a sustained Denial of Service (DoS). This issue affects Juniper Networks SBR Carrier: 8.4.1 versions prior to 8.4.1R19; 8.5.0 versions prior to 8.5.0R10; 8.6.0 versions prior to 8.6.0R4.

Remediation

Solution:

The following software releases have been updated to resolve this specific issue: 8.4.1R19, 8.5.0R10, 8.6.0R4 and all subsequent releases.

Workaround:

There are no viable workarounds for this issue.

References

Link	Tags
https://kb.juniper.net/JSA11180	vendor advisory

Frequently Asked Questions

What is the severity of CVE-2021-0276?: CVE-2021-0276 has been scored as a critical severity vulnerability.
How to fix CVE-2021-0276?: To fix CVE-2021-0276: The following software releases have been updated to resolve this specific issue: 8.4.1R19, 8.5.0R10, 8.6.0R4 and all subsequent releases.
Is CVE-2021-0276 being actively exploited in the wild?: It is possible that CVE-2021-0276 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~2% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2021-0276?: CVE-2021-0276 affects Juniper Networks SBR Carrier.

Description

Remediation

Categories

CWE-121 – Stack-based Buffer Overflow

CWE-787 – Out-of-bounds Write

References

Frequently Asked Questions