PT-2018-8556 · Juniper Networks · Junos

Published

2018-01-10

·

Updated

2019-10-09

·

CVE-2018-0002

CVSS v3.1

8.2

High

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
Name of the Vulnerable Software and Affected Versions: Junos OS versions prior to 12.1X46-D60 on SRX series Junos OS versions prior to 12.3X48-D35 on SRX series Junos OS versions prior to 14.1R9 on MX series Junos OS versions prior to 14.2R8 on MX series Junos OS versions prior to 15.1X49-D60 on SRX series Junos OS versions prior to 15.1R5-S8 on MX series Junos OS versions prior to 15.1F6-S9 on MX series Junos OS versions prior to 15.1R6-S4 on MX series Junos OS versions prior to 15.1R7 on MX series Junos OS versions prior to 16.1R6 on MX series Junos OS versions prior to 16.2R3 on MX series Junos OS versions prior to 17.1R2-S4 on MX series Junos OS versions prior to 17.1R3 on MX series
Description: A crafted TCP/IP response packet processed through the device results in memory corruption leading to a flowd daemon crash. Sustained crafted response packets lead to repeated crashes of the flowd daemon, which results in an extended Denial of Service condition.
Recommendations: For Junos OS versions prior to 12.1X46-D60 on SRX series, update to 12.1X46-D60 or later. For Junos OS versions prior to 12.3X48-D35 on SRX series, update to 12.3X48-D35 or later. For Junos OS versions prior to 14.1R9 on MX series, update to 14.1R9 or later. For Junos OS versions prior to 14.2R8 on MX series, update to 14.2R8 or later. For Junos OS versions prior to 15.1X49-D60 on SRX series, update to 15.1X49-D60 or later. For Junos OS versions prior to 15.1R5-S8 on MX series, update to 15.1R5-S8 or later. For Junos OS versions prior to 15.1F6-S9 on MX series, update to 15.1F6-S9 or later. For Junos OS versions prior to 15.1R6-S4 on MX series, update to 15.1R6-S4 or later. For Junos OS versions prior to 15.1R7 on MX series, update to 15.1R7 or later. For Junos OS versions prior to 16.1R6 on MX series, update to 16.1R6 or later. For Junos OS versions prior to 16.2R3 on MX series, update to 16.2R3 or later. For Junos OS versions prior to 17.1R2-S4 on MX series, update to 17.1R2-S4 or later. For Junos OS versions prior to 17.1R3 on MX series, update to 17.1R3 or later.

Fix

DoS

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2018-0002

Affected Products

Junos