Junos OS: SRX Series: An attacker may cause flowd to crash by sending certain valid SIP traffic to a device with SIP ALG enabled.
Description
A vulnerability in the SIP ALG packet processing service of Juniper Networks Junos OS allows an attacker to cause a Denial of Service (DoS) to the device by sending specific types of valid SIP traffic to the device. In this case, the flowd process crashes and generates a core dump while processing SIP ALG traffic. Continued receipt of these valid SIP packets will result in a sustained Denial of Service (DoS) condition. This issue affects: Juniper Networks Junos OS: 12.3X48 versions prior to 12.3X48-D61, 12.3X48-D65 on SRX Series; 15.1X49 versions prior to 15.1X49-D130 on SRX Series; 17.3 versions prior to 17.3R3 on SRX Series; 17.4 versions prior to 17.4R2 on SRX Series.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<12.3X48-D61, <12.3X48-D65, <15.1X49-D130, <17.3R2, <17.4R2+ 1 more
- (no CPE)range: <12.3X48-D61, <12.3X48-D65, <15.1X49-D130, <17.3R2, <17.4R2
- (no CPE)range: 12.3X48
Patches
Vulnerability mechanics
References
2- kb.juniper.net/JSA10953mitrex_refsource_MISC
- www.juniper.net/documentation/en_US/junos/topics/topic-map/security-sip-alg.htmlmitremailing-listx_refsource_MLIST
News mentions
0No linked articles in our index yet.