CVE-2019-0065

Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 16.1R7-S5 Junos OS versions prior to 16.2R2-S11 Junos OS versions prior to 17.1R3 Junos OS versions prior to 17.2R3-S3 Junos OS versions prior to 17.3R3-S6 Junos OS versions prior to 17.4R2-S8 Junos OS versions prior to 17.4R3 Junos OS versions prior to 18.1R3-S3 Junos OS versions prior to 18.2R3 Junos OS versions prior to 18.3R2 Junos OS versions prior to 18.4R2

Description The issue is related to errors in resource release in the SIP ALG of Junos OS on MX Series routers. Exploitation of this issue may allow a remote attacker to cause a denial of service by sending specially crafted SIP packets. This can cause the MS-PIC component on MS-MIC or MS-MPC to crash, leading to a sustained denial of service.

Recommendations For Junos OS versions prior to 16.1R7-S5, update to 16.1R7-S5 or later. For Junos OS versions prior to 16.2R2-S11, update to 16.2R2-S11 or later. For Junos OS versions prior to 17.1R3, update to 17.1R3 or later. For Junos OS versions prior to 17.2R3-S3, update to 17.2R3-S3 or later. For Junos OS versions prior to 17.3R3-S6, update to 17.3R3-S6 or later. For Junos OS versions prior to 17.4R2-S8, update to 17.4R2-S8 or later. For Junos OS versions prior to 17.4R3, update to 17.4R3 or later. For Junos OS versions prior to 18.1R3-S3, update to 18.1R3-S3 or later. For Junos OS versions prior to 18.2R3, update to 18.2R3 or later. For Junos OS versions prior to 18.3R2, update to 18.3R2 or later. For Junos OS versions prior to 18.4R2, update to 18.4R2 or later.