high
7.5
CWE
200
Advisory Published
Updated

CVE-2018-0018: SRX Series: A crafted packet may lead to information disclosure and firewall rule bypass during compilation of IDP policies.

First published: Wed Apr 11 2018(Updated: )

On SRX Series devices during compilation of IDP policies, an attacker sending specially crafted packets may be able to bypass firewall rules, leading to information disclosure which an attacker may use to gain control of the target device or other internal devices, systems or services protected by the SRX Series device. This issue only applies to devices where IDP policies are applied to one or more rules. Customers not using IDP policies are not affected. Depending on if the IDP updates are automatic or not, as well as the interval between available updates, an attacker may have more or less success in performing reconnaissance or bypass attacks on the victim SRX Series device or protected devices. ScreenOS with IDP is not vulnerable to this issue. Affected releases are Juniper Networks Junos OS: 12.1X46 versions prior to 12.1X46-D60 on SRX; 12.3X48 versions prior to 12.3X48-D35 on SRX; 15.1X49 versions prior to 15.1X49-D60 on SRX.

Credit: sirt@juniper.net

Affected SoftwareAffected VersionHow to fix
Juniper JUNOS=12.1x46
Juniper JUNOS=12.1x46-d10
Juniper JUNOS=12.1x46-d15
Juniper JUNOS=12.1x46-d20
Juniper JUNOS=12.1x46-d25
Juniper JUNOS=12.1x46-d30
Juniper JUNOS=12.1x46-d35
Juniper JUNOS=12.1x46-d40
Juniper JUNOS=12.1x46-d45
Juniper JUNOS=12.1x46-d50
Juniper JUNOS=12.1x46-d55
Juniper Srx100
Juniper Srx110
Juniper Srx1400
Juniper Srx1500
Juniper Srx210
Juniper Srx220
Juniper Srx240
Juniper Srx300
Juniper Srx320
Juniper Srx340
Juniper Srx3400
Juniper Srx345
Juniper Srx3600
Juniper Srx4100
Juniper Srx4200
Juniper Srx5400
Juniper Srx550
Juniper Srx5600
Juniper Srx5800
Juniper Srx650
Juniper JUNOS=12.3x48
Juniper JUNOS=12.3x48-d10
Juniper JUNOS=12.3x48-d15
Juniper JUNOS=12.3x48-d20
Juniper JUNOS=12.3x48-d25
Juniper JUNOS=12.3x48-d30
Juniper JUNOS=15.1x49
Juniper JUNOS=15.1x49-d10
Juniper JUNOS=15.1x49-d20
Juniper JUNOS=15.1x49-d30
Juniper JUNOS=15.1x49-d35
Juniper JUNOS=15.1x49-d40
Juniper JUNOS=15.1x49-d45
Juniper JUNOS=15.1x49-d50

Remedy

https://kb.juniper.net/JSA10846

Remedy

The following software releases have been updated to resolve this specific issue: 12.1X46-D60, 12.3X48-D35, 15.1X49-D60, 17.3R1, and all subsequent releases. Additionally, customers should download and apply the latest sigpack for IDP signatures.

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203