CVE-2018-0051

Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 12.1X46-D77 Junos OS versions prior to 12.3X48-D70 Junos OS versions prior to 15.1X49-D140 Junos OS versions prior to 15.1R4-S9 Junos OS versions prior to 15.1R7-S1 Junos OS version 15.1F6 Junos OS versions prior to 16.1R4-S9 Junos OS versions prior to 16.1R6-S1 Junos OS versions prior to 16.1R7 Junos OS versions prior to 16.2R2-S7 Junos OS versions prior to 16.2R3 Junos OS versions prior to 17.1R2-S7 Junos OS versions prior to 17.1R3 Junos OS versions prior to 17.2R1-S6 Junos OS versions prior to 17.2R2-S4 Junos OS versions prior to 17.2R3 Junos OS versions prior to 17.3R1-S5 Junos OS versions prior to 17.3R2-S2 Junos OS versions prior to 17.3R3 Junos OS versions prior to 17.4R2

Description A Denial of Service vulnerability in the SIP application layer gateway (ALG) component of Junos OS based platforms allows an attacker to crash MS-PIC, MS-MIC, MS-MPC, MS-DPC or SRX flow daemon (flowd) process. This issue affects Junos OS devices with NAT or stateful firewall configuration in combination with the SIP ALG enabled. The vulnerability is related to resource release errors.

Recommendations For Junos OS versions prior to 12.1X46-D77, update to version 12.1X46-D77 or later. For Junos OS versions prior to 12.3X48-D70, update to version 12.3X48-D70 or later. For Junos OS versions prior to 15.1X49-D140, update to version 15.1X49-D140 or later. For Junos OS versions prior to 15.1R4-S9, update to version 15.1R4-S9 or later. For Junos OS versions prior to 15.1R7-S1, update to version 15.1R7-S1 or later. For Junos OS version 15.1F6, update to a later version. For Junos OS versions prior to 16.1R4-S9, update to version 16.1R4-S9 or later. For Junos OS versions prior to 16.1R6-S1, update to version 16.1R6-S1 or later. For Junos OS versions prior to 16.1R7, update to version 16.1R7 or later. For Junos OS versions prior to 16.2R2-S7, update to version 16.2R2-S7 or later. For Junos OS versions prior to 16.2R3, update to version 16.2R3 or later. For Junos OS versions prior to 17.1R2-S7, update to version 17.1R2-S7 or later. For Junos OS versions prior to 17.1R3, update to version 17.1R3 or later. For Junos OS versions prior to 17.2R1-S6, update to version 17.2R1-S6 or later. For Junos OS versions prior to 17.2R2-S4, update to version 17.2R2-S4 or later. For Junos OS versions prior to 17.2R3, update to version 17.2R3 or later. For Junos OS versions prior to 17.3R1-S5, update to version 17.3R1-S5 or later. For Junos OS versions prior to 17.3R2-S2, update to version 17.3R2-S2 or later. For Junos OS versions prior to 17.3R3, update to version 17.3R3 or later. For Junos OS versions prior to 17.4R2, update to version 17.4R2 or later.