If you are using a Juniper Netscreen as a DHCP server you may find that when rebooting the device the DNS server entries for the DHCP change to the entries of the untrust port. This is down to the default DNS override settings and they can be changed either by using the GUI or Shell commands. I will show both ways below:
GUI:
- Log into the juniper and select Network > Interfaces > untrust port > Edit
- Deselect the setting Automatic Update DHCP Server Parameters
Shell:
Login to the shell (i.e. using Putty) then type the following command to disable the setting on the untrust port:
unset interface untrust dhcp client settings update-dhcpserver
Cisco Security Advisories
- Cisco IP Phone TCP Packet Flood Denial of Service VulnerabilityA vulnerability in the TCP packet processing functionality of Cisco IP Phones could allow an unauthenticated, remote attacker to cause the phone to stop responding to incoming calls, drop connected calls, or unexpectedly reload. The vulnerability is due to insufficient TCP ingress packet rate limiting. An attacker could exploit this vulnerability by sending a high and […]
- Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Remote Command Execution and Denial of Service VulnerabilitiesMultiple vulnerabilities in the Universal Plug and Play (UPnP) service and the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow a remote attacker to execute arbitrary code or cause an affected device to restart unexpectedly. For more information about these vulnerabilities, see the Details section of this advisory. Cisco has […]
- Multiple Vulnerabilities in dnsmasq DNS Forwarder Affecting Cisco Products: January 2021A set of previously unknown vulnerabilities in the DNS forwarder implementation of dnsmasq were disclosed on January 19, 2021. The vulnerabilities are collectively known as DNSpooq. Exploitation of these vulnerabilities could result in remote code execution or denial of service (DoS), or may allow an attacker to more easily forge DNS answers that can poison […]
- Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Management Interface Stored Cross-Site Scripting VulnerabilitiesMultiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the interface. The vulnerabilities are due to insufficient input validation by the web-based management interface. An attacker could exploit these vulnerabilities by sending […]
Recent Comments