CVE-2021-0276 – Steel-Belted Radius Carrier Edition: Remote code execution vulnerability when EAP Authentication is configured.

https://notcve.org/view.php?id=CVE-2021-0276

A stack-based Buffer Overflow vulnerability in Juniper Networks SBR Carrier with EAP (Extensible Authentication Protocol) authentication configured, allows an attacker sending specific packets causing the radius daemon to crash resulting with a Denial of Service (DoS) or leading to remote code execution (RCE). By continuously sending this specific packets, an attacker can repeatedly crash the radius daemon, causing a sustained Denial of Service (DoS). This issue affects Juniper Networks SBR Carrier: 8.4.1 versions prior to 8.4.1R19; 8.5.0 versions prior to 8.5.0R10; 8.6.0 versions prior to 8.6.0R4. Una vulnerabilidad de Desbordamiento del Búfer en la región stack de la memoria en Juniper Networks SBR Carrier con la autenticación EAP (Extensible Authentication Protocol) configurada, permite a un atacante enviar paquetes específicos causando el bloqueo del demonio radius, resultando en una Denegación de Servicio (DoS) o conllevando a una ejecución de código remota (RCE). Al enviar continuamente estos paquetes específicos, un atacante puede bloquear repetidamente el daemon radius, causando una Denegación de Servicio (DoS) sostenida. • https://kb.juniper.net/JSA11180 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •