CVE-2020-1680

Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 15.1R7-S7 Junos OS versions prior to 15.1X53-D593 Junos OS versions prior to 16.1R7-S8 Junos OS versions prior to 17.2R3-S4 Junos OS versions prior to 17.3R3-S6 Junos OS versions prior to 17.4R2-S11 Junos OS versions prior to 17.4R3 Junos OS versions prior to 18.1R3-S11 Junos OS versions prior to 18.2R3-S6 Junos OS versions prior to 18.2X75-D41 Junos OS versions prior to 18.2X75-D430 Junos OS versions prior to 18.2X75-D53 Junos OS versions prior to 18.2X75-D65 Junos OS versions prior to 18.3R2-S4 Junos OS versions prior to 18.3R3 Junos OS versions prior to 18.4R2-S5 Junos OS versions prior to 18.4R3 Junos OS versions prior to 19.1R2 Junos OS versions prior to 19.2R1-S5 Junos OS versions prior to 19.2R2 Junos OS versions prior to 19.3R2

Description The issue is related to the incorrect calculation of buffer size when processing IPv6 and IPv4 packets in the NAT64 technology implementation of Juniper Networks MS-MIC and MS-MPC modules for Junos OS on MX Series routers. An unauthenticated attacker can exploit this issue by sending specially crafted IPv6 packets, potentially causing a denial of service condition due to repetitive crashes of the MS-PIC process.

Recommendations For Junos OS versions prior to 15.1R7-S7, update to 15.1R7-S7 or later. For Junos OS versions prior to 15.1X53-D593, update to 15.1X53-D593 or later. For Junos OS versions prior to 16.1R7-S8, update to 16.1R7-S8 or later. For Junos OS versions prior to 17.2R3-S4, update to 17.2R3-S4 or later. For Junos OS versions prior to 17.3R3-S6, update to 17.3R3-S6 or later. For Junos OS versions prior to 17.4R2-S11, update to 17.4R2-S11 or later. For Junos OS versions prior to 17.4R3, update to 17.4R3 or later. For Junos OS versions prior to 18.1R3-S11, update to 18.1R3-S11 or later. For Junos OS versions prior to 18.2R3-S6, update to 18.2R3-S6 or later. For Junos OS versions prior to 18.2X75-D41, update to 18.2X75-D41 or later. For Junos OS versions prior to 18.2X75-D430, update to 18.2X75-D430 or later. For Junos OS versions prior to 18.2X75-D53, update to 18.2X75-D53 or later. For Junos OS versions prior to 18.2X75-D65, update to 18.2X75-D65 or later. For Junos OS versions prior to 18.3R2-S4, update to 18.3R2-S4 or later. For Junos OS versions prior to 18.3R3, update to 18.3R3 or later. For Junos OS versions prior to 18.4R2-S5, update to 18.4R2-S5 or later. For Junos OS versions prior to 18.4R3, update to 18.4R3 or later. For Junos OS versions prior to 19.1R2, update to 19.1R2 or later. For Junos OS versions prior to 19.2R1-S5, update to 19.2R1-S5 or later. For Junos OS versions prior to 19.2R2, update to 19.2R2 or later. For Junos OS versions prior to 19.3R2, update to 19.3R2 or later.