PT-2020-5933 · Juniper Networks · Junos

Published

2020-07-08

·

Updated

2021-02-05

·

CVE-2020-1654

CVSS v3.1

9.8

Critical

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS on SRX Series versions 18.1 through 18.1R3-S9 Juniper Networks Junos OS on SRX Series versions 18.2 through 18.2R2-S7 Juniper Networks Junos OS on SRX Series versions 18.2 through 18.2R3-S3 Juniper Networks Junos OS on SRX Series versions 18.3 through 18.3R1-S7 Juniper Networks Junos OS on SRX Series versions 18.3 through 18.3R2-S4 Juniper Networks Junos OS on SRX Series versions 18.3 through 18.3R3-S1 Juniper Networks Junos OS on SRX Series versions 18.4 through 18.4R1-S7 Juniper Networks Junos OS on SRX Series versions 18.4 through 18.4R2-S4 Juniper Networks Junos OS on SRX Series versions 18.4 through 18.4R3 Juniper Networks Junos OS on SRX Series versions 19.1 through 19.1R1-S5 Juniper Networks Junos OS on SRX Series versions 19.1 through 19.1R2 Juniper Networks Junos OS on SRX Series versions 19.2 through 19.2R1-S2 Juniper Networks Junos OS on SRX Series versions 19.2 through 19.2R2 Juniper Networks Junos OS on SRX Series versions 19.3 through 19.3R2
Description: The issue is related to the implementation of the Internet Content Adaptation Protocol (ICAP) in Juniper Networks Junos OS on SRX Series. Processing a malformed HTTP message can lead to a Denial of Service (DoS) or Remote Code Execution (RCE). The offending HTTP message may originate from both the HTTP server and the HTTP client. This is due to a buffer copy without checking the size of the input data, which can be exploited by a remote attacker to elevate privileges, execute arbitrary code, or cause a denial of service.
Recommendations: For versions 18.1 through 18.1R3-S9, update to version 18.1R3-S9 or later. For versions 18.2 through 18.2R2-S7, update to version 18.2R2-S7 or later. For versions 18.2 through 18.2R3-S3, update to version 18.2R3-S3 or later. For versions 18.3 through 18.3R1-S7, update to version 18.3R1-S7 or later. For versions 18.3 through 18.3R2-S4, update to version 18.3R2-S4 or later. For versions 18.3 through 18.3R3-S1, update to version 18.3R3-S1 or later. For versions 18.4 through 18.4R1-S7, update to version 18.4R1-S7 or later. For versions 18.4 through 18.4R2-S4, update to version 18.4R2-S4 or later. For versions 18.4 through 18.4R3, update to version 18.4R3 or later. For versions 19.1 through 19.1R1-S5, update to version 19.1R1-S5 or later. For versions 19.1 through 19.1R2, update to version 19.1R2 or later. For versions 19.2 through 19.2R1-S2, update to version 19.2R1-S2 or later. For versions 19.2 through 19.2R2, update to version 19.2R2 or later. For versions 19.3 through 19.3R2, update to version 19.3R2 or later.

Fix

DoS

RCE

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-120

Related Identifiers

BDU:2021-02048
CVE-2020-1654

Affected Products

Junos