CVE-2015-5363
First published: Thu Jul 16 2015(Updated: )
The SRX Network Security Daemon (nsd) in Juniper SRX Series services gateways with Junos 12.1X44 before 12.1X44-D50, 12.1X46 before 12.1X46-D35, 12.1X47 before 12.1X47-D25, and 12.3X48 before 12.3X48-D15 allows remote DNS servers to cause a denial of service (crash) via a crafted DNS response.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Juniper JUNOS | =12.1x44 | |
| Juniper JUNOS | =12.1x44-d10 | |
| Juniper JUNOS | =12.1x44-d15 | |
| Juniper JUNOS | =12.1x44-d20 | |
| Juniper JUNOS | =12.1x44-d25 | |
| Juniper JUNOS | =12.1x44-d30 | |
| Juniper JUNOS | =12.1x44-d35 | |
| Juniper JUNOS | =12.1x44-d40 | |
| Juniper JUNOS | =12.1x44-d45 | |
| Juniper JUNOS | =12.1x46 | |
| Juniper JUNOS | =12.1x46-d10 | |
| Juniper JUNOS | =12.1x46-d15 | |
| Juniper JUNOS | =12.1x46-d20 | |
| Juniper JUNOS | =12.1x46-d25 | |
| Juniper JUNOS | =12.1x46-d30 | |
| Juniper JUNOS | =12.1x47 | |
| Juniper JUNOS | =12.1x47-d10 | |
| Juniper JUNOS | =12.1x47-d15 | |
| Juniper JUNOS | =12.1x47-d20 | |
| Juniper JUNOS | =12.3x48 | |
| Juniper JUNOS | =12.3x48-d10 | |
| Juniper JUNOS | =12.3x48-d5 | |
| Juniper SRX100 | ||
| Juniper SRX110 | ||
| Juniper SRX1400 | ||
| Juniper SRX210 | ||
| Juniper SRX220 | ||
| Juniper SRX240 | ||
| Juniper SRX3400 | ||
| Juniper SRX3600 | ||
| Juniper SRX5400 | ||
| Juniper SRX550 | ||
| juniper srx5600 | ||
| Juniper SRX5800 | ||
| Juniper SRX650 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2015-5363?
CVE-2015-5363 is classified as a denial of service vulnerability.
How do I fix CVE-2015-5363?
To patch CVE-2015-5363, update your Junos software to the latest version recommended by Juniper.
Which versions of Junos are affected by CVE-2015-5363?
CVE-2015-5363 affects Junos versions prior to 12.1X44-D50, 12.1X46-D35, 12.1X47-D25, and 12.3X48-D15.
Can CVE-2015-5363 be exploited remotely?
Yes, CVE-2015-5363 can be exploited by remote DNS servers through crafted DNS responses.
What devices are impacted by CVE-2015-5363?
CVE-2015-5363 impacts Juniper SRX Series services gateways running vulnerable versions of Junos.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/author
- agent/event
- agent/first-publish-date
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/juniper
- canonical/juniper junos
- version/juniper junos/12.1x44
- version/juniper junos/12.1x44-d10
- version/juniper junos/12.1x44-d15
- version/juniper junos/12.1x44-d20
- version/juniper junos/12.1x44-d25
- version/juniper junos/12.1x44-d30
- version/juniper junos/12.1x44-d35
- version/juniper junos/12.1x44-d40
- version/juniper junos/12.1x44-d45
- version/juniper junos/12.1x46
- version/juniper junos/12.1x46-d10
- version/juniper junos/12.1x46-d15
- version/juniper junos/12.1x46-d20
- version/juniper junos/12.1x46-d25
- version/juniper junos/12.1x46-d30
- version/juniper junos/12.1x47
- version/juniper junos/12.1x47-d10
- version/juniper junos/12.1x47-d15
- version/juniper junos/12.1x47-d20
- version/juniper junos/12.3x48
- version/juniper junos/12.3x48-d10
- version/juniper junos/12.3x48-d5
- canonical/juniper srx100
- canonical/juniper srx110
- canonical/juniper srx1400
- canonical/juniper srx210
- canonical/juniper srx220
- canonical/juniper srx240
- canonical/juniper srx3400
- canonical/juniper srx3600
- canonical/juniper srx5400
- canonical/juniper srx550
- canonical/juniper srx5600
- canonical/juniper srx5800
- canonical/juniper srx650