CVE-2017-2344

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS versions 12.1X46 prior to 12.1X46-D67 Juniper Networks Junos OS versions 12.3X48 prior to 12.3X48-D55 Juniper Networks Junos OS versions 13.3 prior to 13.3R10-S2 Juniper Networks Junos OS versions 14.1 prior to 14.1R2-S10 Juniper Networks Junos OS versions 14.1X50 prior to 14.1X50-D185 Juniper Networks Junos OS versions 14.1X53 prior to 14.1X53-D122 Juniper Networks Junos OS versions 14.2 prior to 14.2R4-S9 Juniper Networks Junos OS versions 15.1 prior to 15.1F2-S18 Juniper Networks Junos OS versions 15.1X49 prior to 15.1X49-D100 Juniper Networks Junos OS versions 15.1X53 prior to 15.1X53-D231 Juniper Networks Junos OS versions 16.1 prior to 16.1R3-S4 Juniper Networks Junos OS versions 16.2 prior to 16.2R2 Juniper Networks Junos OS versions 17.1 prior to 17.1R1-S3 Juniper Networks Junos OS versions 17.2 prior to 17.2R1-S1 Juniper Networks Junos OS versions 17.2X75 prior to 17.2X75-D30

Description A routine within an internal Junos OS sockets library is vulnerable to a buffer overflow. Malicious exploitation of this issue may lead to a denial of service (kernel panic) or be leveraged as a privilege escalation through local code execution. The routines are only accessible via programs running on the device itself, and veriexec restricts arbitrary programs from running on Junos OS. There are no known exploit vectors utilizing signed binaries shipped with Junos OS itself.

Recommendations For Juniper Networks Junos OS versions 12.1X46 prior to 12.1X46-D67, update to version 12.1X46-D67 or later. For Juniper Networks Junos OS versions 12.3X48 prior to 12.3X48-D55, update to version 12.3X48-D55 or later. For Juniper Networks Junos OS versions 13.3 prior to 13.3R10-S2, update to version 13.3R10-S2 or later. For Juniper Networks Junos OS versions 14.1 prior to 14.1R2-S10, update to version 14.1R2-S10 or later. For Juniper Networks Junos OS versions 14.1X50 prior to 14.1X50-D185, update to version 14.1X50-D185 or later. For Juniper Networks Junos OS versions 14.1X53 prior to 14.1X53-D122, update to version 14.1X53-D122 or later. For Juniper Networks Junos OS versions 14.2 prior to 14.2R4-S9, update to version 14.2R4-S9 or later. For Juniper Networks Junos OS versions 15.1 prior to 15.1F2-S18, update to version 15.1F2-S18 or later. For Juniper Networks Junos OS versions 15.1X49 prior to 15.1X49-D100, update to version 15.1X49-D100 or later. For Juniper Networks Junos OS versions 15.1X53 prior to 15.1X53-D231, update to version 15.1X53-D231 or later. For Juniper Networks Junos OS versions 16.1 prior to 16.1R3-S4, update to version 16.1R3-S4 or later. For Juniper Networks Junos OS versions 16.2 prior to 16.2R2, update to version 16.2R2 or later. For Juniper Networks Junos OS versions 17.1 prior to 17.1R1-S3, update to version 17.1R1-S3 or later. For Juniper Networks Junos OS versions 17.2 prior to 17.2R1-S1, update to version 17.2R1-S1 or later. For Juniper Networks Junos OS versions 17.2X75 prior to 17.2X75-D30, update to version 17.2X75-D30 or later.