CVE-2019-0055: Junos OS: SRX Series: An attacker may cause flowd to crash by sending certain valid SIP traffic to a device with SIP ALG enabled.
First published: Wed Oct 09 2019(Updated: )
A vulnerability in the SIP ALG packet processing service of Juniper Networks Junos OS allows an attacker to cause a Denial of Service (DoS) to the device by sending specific types of valid SIP traffic to the device. In this case, the flowd process crashes and generates a core dump while processing SIP ALG traffic. Continued receipt of these valid SIP packets will result in a sustained Denial of Service (DoS) condition. This issue affects: Juniper Networks Junos OS: 12.3X48 versions prior to 12.3X48-D61, 12.3X48-D65 on SRX Series; 15.1X49 versions prior to 15.1X49-D130 on SRX Series; 17.3 versions prior to 17.3R3 on SRX Series; 17.4 versions prior to 17.4R2 on SRX Series.
Credit: sirt@juniper.net
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Juniper JUNOS | =12.3x48-d10 | |
| Juniper JUNOS | =12.3x48-d15 | |
| Juniper JUNOS | =12.3x48-d25 | |
| Juniper JUNOS | =12.3x48-d30 | |
| Juniper JUNOS | =12.3x48-d35 | |
| Juniper JUNOS | =12.3x48-d40 | |
| Juniper JUNOS | =12.3x48-d45 | |
| Juniper JUNOS | =12.3x48-d50 | |
| Juniper JUNOS | =12.3x48-d55 | |
| Juniper JUNOS | =12.3x48-d60 | |
| Juniper Csrx | ||
| Juniper Srx100 | ||
| Juniper Srx110 | ||
| Juniper Srx1400 | ||
| Juniper Srx1500 | ||
| Juniper Srx210 | ||
| Juniper Srx220 | ||
| Juniper Srx240 | ||
| Juniper Srx300 | ||
| Juniper Srx320 | ||
| Juniper Srx340 | ||
| Juniper Srx3400 | ||
| Juniper Srx345 | ||
| Juniper Srx3600 | ||
| Juniper Srx4100 | ||
| Juniper Srx4200 | ||
| Juniper Srx4600 | ||
| Juniper Srx5400 | ||
| Juniper Srx550 | ||
| Juniper Srx550 Hm | ||
| Juniper Srx5600 | ||
| Juniper Srx5800 | ||
| Juniper Srx650 | ||
| Juniper vSRX | ||
| Juniper JUNOS | =15.1x49 | |
| Juniper JUNOS | =15.1x49-d10 | |
| Juniper JUNOS | =15.1x49-d100 | |
| Juniper JUNOS | =15.1x49-d110 | |
| Juniper JUNOS | =15.1x49-d120 | |
| Juniper JUNOS | =15.1x49-d20 | |
| Juniper JUNOS | =15.1x49-d30 | |
| Juniper JUNOS | =15.1x49-d35 | |
| Juniper JUNOS | =15.1x49-d40 | |
| Juniper JUNOS | =15.1x49-d45 | |
| Juniper JUNOS | =15.1x49-d50 | |
| Juniper JUNOS | =15.1x49-d55 | |
| Juniper JUNOS | =15.1x49-d60 | |
| Juniper JUNOS | =15.1x49-d65 | |
| Juniper JUNOS | =15.1x49-d70 | |
| Juniper JUNOS | =15.1x49-d75 | |
| Juniper JUNOS | =15.1x49-d80 | |
| Juniper JUNOS | =15.1x49-d90 | |
| Juniper JUNOS | =17.3 | |
| Juniper JUNOS | =17.3-r2 | |
| Juniper JUNOS | =17.3-r2-s1 | |
| Juniper JUNOS | =17.3-r2-s2 | |
| Juniper JUNOS | =17.4 | |
| Juniper JUNOS | =17.4-r1 | |
| Juniper JUNOS | =17.4-r1-s1 | |
| Juniper JUNOS | =17.4-r1-s2 | |
| Juniper JUNOS | =17.4-r1-s4 | |
| Juniper JUNOS | =17.4-r1-s6 | |
| Juniper JUNOS | =17.4-r1-s7 |
Remedy
The following software releases have been updated to resolve this specific issue: 12.3X48-D61, 12.3X48-D65, 15.1X49-D130, 17.3R3, 17.4R2, 18.1R1, and all subsequent releases.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/severity
- agent/author
- agent/weakness
- agent/title
- agent/last-modified-date
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- vendor/juniper
- canonical/juniper junos
- version/juniper junos/12.3x48-d10
- version/juniper junos/12.3x48-d15
- version/juniper junos/12.3x48-d25
- version/juniper junos/12.3x48-d30
- version/juniper junos/12.3x48-d35
- version/juniper junos/12.3x48-d40
- version/juniper junos/12.3x48-d45
- version/juniper junos/12.3x48-d50
- version/juniper junos/12.3x48-d55
- version/juniper junos/12.3x48-d60
- canonical/juniper csrx
- canonical/juniper srx100
- canonical/juniper srx110
- canonical/juniper srx1400
- canonical/juniper srx1500
- canonical/juniper srx210
- canonical/juniper srx220
- canonical/juniper srx240
- canonical/juniper srx300
- canonical/juniper srx320
- canonical/juniper srx340
- canonical/juniper srx3400
- canonical/juniper srx345
- canonical/juniper srx3600
- canonical/juniper srx4100
- canonical/juniper srx4200
- canonical/juniper srx4600
- canonical/juniper srx5400
- canonical/juniper srx550
- canonical/juniper srx550 hm
- canonical/juniper srx5600
- canonical/juniper srx5800
- canonical/juniper srx650
- canonical/juniper vsrx
- version/juniper junos/15.1x49
- version/juniper junos/15.1x49-d10
- version/juniper junos/15.1x49-d100
- version/juniper junos/15.1x49-d110
- version/juniper junos/15.1x49-d120
- version/juniper junos/15.1x49-d20
- version/juniper junos/15.1x49-d30
- version/juniper junos/15.1x49-d35
- version/juniper junos/15.1x49-d40
- version/juniper junos/15.1x49-d45
- version/juniper junos/15.1x49-d50
- version/juniper junos/15.1x49-d55
- version/juniper junos/15.1x49-d60
- version/juniper junos/15.1x49-d65
- version/juniper junos/15.1x49-d70
- version/juniper junos/15.1x49-d75
- version/juniper junos/15.1x49-d80
- version/juniper junos/15.1x49-d90
- version/juniper junos/17.3
- version/juniper junos/17.3-r2
- version/juniper junos/17.3-r2-s1
- version/juniper junos/17.3-r2-s2
- version/juniper junos/17.4
- version/juniper junos/17.4-r1
- version/juniper junos/17.4-r1-s1
- version/juniper junos/17.4-r1-s2
- version/juniper junos/17.4-r1-s4
- version/juniper junos/17.4-r1-s6
- version/juniper junos/17.4-r1-s7