CVE-2019-0055

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS versions prior to 12.3X48-D61 Juniper Networks Junos OS versions prior to 15.1X49-D130 Juniper Networks Junos OS versions prior to 17.3R3 Juniper Networks Junos OS versions prior to 17.4R2

Description A vulnerability in the SIP ALG packet processing service allows an attacker to cause a Denial of Service (DoS) to the device by sending specific types of valid SIP traffic to the device. The flowd process crashes and generates a core dump while processing SIP ALG traffic, resulting in a sustained Denial of Service (DoS) condition. This issue is due to insufficient input validation.

Recommendations For versions prior to 12.3X48-D61, update to version 12.3X48-D61 or later. For versions prior to 15.1X49-D130, update to version 15.1X49-D130 or later. For versions prior to 17.3R3, update to version 17.3R3 or later. For versions prior to 17.4R2, update to version 17.4R2 or later.