CVE-2015-5358

Name of the Vulnerable Software and Affected Versions Juniper Junos OS versions 12.1X44 before 12.1X44-D50 Juniper Junos OS versions 12.1X46 before 12.1X46-D35 Juniper Junos OS versions 12.1X47 before 12.1X47-D25 Juniper Junos OS versions 12.3 before 12.3R9 Juniper Junos OS versions 12.3X48 before 12.3X48-D15 Juniper Junos OS versions 13.2 before 13.2R7 Juniper Junos OS versions 13.2X51 before 13.2X51-D35 Juniper Junos OS versions 13.2X52 before 13.2X52-D25 Juniper Junos OS versions 13.3 before 13.3R6 Juniper Junos OS versions 14.1R3 before 14.1R3-S2 Juniper Junos OS versions 14.1 before 14.1R4 Juniper Junos OS versions 14.1X53 before 14.1X53-D16 Juniper Junos OS versions 14.1X55 before 14.1X55-D25 Juniper Junos OS versions 14.2 before 14.2R2 Juniper Junos OS versions 15.1 before 15.1R1

Description The issue allows remote attackers to cause a denial of service by consuming mbuf and connections, leading to a restart, via a large number of requests that trigger a TCP connection to move to the LAST ACK state when there is more data to send.

Recommendations For Juniper Junos OS versions 12.1X44 before 12.1X44-D50, update to version 12.1X44-D50 or later. For Juniper Junos OS versions 12.1X46 before 12.1X46-D35, update to version 12.1X46-D35 or later. For Juniper Junos OS versions 12.1X47 before 12.1X47-D25, update to version 12.1X47-D25 or later. For Juniper Junos OS versions 12.3 before 12.3R9, update to version 12.3R9 or later. For Juniper Junos OS versions 12.3X48 before 12.3X48-D15, update to version 12.3X48-D15 or later. For Juniper Junos OS versions 13.2 before 13.2R7, update to version 13.2R7 or later. For Juniper Junos OS versions 13.2X51 before 13.2X51-D35, update to version 13.2X51-D35 or later. For Juniper Junos OS versions 13.2X52 before 13.2X52-D25, update to version 13.2X52-D25 or later. For Juniper Junos OS versions 13.3 before 13.3R6, update to version 13.3R6 or later. For Juniper Junos OS versions 14.1R3 before 14.1R3-S2, update to version 14.1R3-S2 or later. For Juniper Junos OS versions 14.1 before 14.1R4, update to version 14.1R4 or later. For Juniper Junos OS versions 14.1X53 before 14.1X53-D16, update to version 14.1X53-D16 or later. For Juniper Junos OS versions 14.1X55 before 14.1X55-D25, update to version 14.1X55-D25 or later. For Juniper Junos OS versions 14.2 before 14.2R2, update to version 14.2R2 or later. For Juniper Junos OS versions 15.1 before 15.1R1, update to version 15.1R1 or later.