CVE-2020-1645

Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS versions prior to 17.3R3-S8 Juniper Networks Junos OS versions prior to 18.3R2-S4, 18.3R3-S1 Juniper Networks Junos OS versions prior to 18.4R2-S5, 18.4R3 Juniper Networks Junos OS versions prior to 19.1R2-S2, 19.1R3 Juniper Networks Junos OS versions prior to 19.2R1-S5, 19.2R2 Juniper Networks Junos OS versions prior to 19.3R2-S3, 19.3R3 Juniper Networks Junos OS versions prior to 19.4R1-S3, 19.4R2

Description: The issue is related to the Multiservices PIC Management Daemon (mspmand) process, which manages the "URL Filtering service" on Juniper Networks Junos MX Series devices with specific cards (MS-PIC, MS-MIC, or MS-MPC). When DNS filtering is enabled, an incoming stream of packets may cause the mspmand process to crash, leading to a restart of the Services PIC. During this restart, all PIC services, including DNS filtering, are bypassed. The system core-dumps output will show a crash of the mspmand process. This issue may allow a remote attacker to elevate privileges, execute arbitrary code, or cause a denial of service due to improper synchronization when using a shared resource.

Recommendations: For Juniper Networks Junos OS versions prior to 17.3R3-S8, update to 17.3R3-S8 or later. For Juniper Networks Junos OS versions prior to 18.3R2-S4, 18.3R3-S1, update to 18.3R2-S4 or 18.3R3-S1 or later. For Juniper Networks Junos OS versions prior to 18.4R2-S5, 18.4R3, update to 18.4R2-S5 or 18.4R3 or later. For Juniper Networks Junos OS versions prior to 19.1R2-S2, 19.1R3, update to 19.1R2-S2 or 19.1R3 or later. For Juniper Networks Junos OS versions prior to 19.2R1-S5, 19.2R2, update to 19.2R1-S5 or 19.2R2 or later. For Juniper Networks Junos OS versions prior to 19.3R2-S3, 19.3R3, update to 19.3R2-S3 or 19.3R3 or later. For Juniper Networks Junos OS versions prior to 19.4R1-S3, 19.4R2, update to 19.4R1-S3 or 19.4R2 or later.