CVE-2017-2346 — Networks Junos OS vulnerability

3 documents3 sources

Severity

5.9MEDIUMNVD

EPSS

0.3%

top 49.78%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Juniper Networks Junos OS Juniper Junos Juniper Junos OS +1 more

Timeline

PublishedJul 17

Latest updateMay 13

Description

An MS-MPC or MS-MIC Service PIC may crash when large fragmented packets are passed through an Application Layer Gateway (ALG). Repeated crashes of the Service PC can result in an extended denial of service condition. The issue can be seen only if NAT or stateful-firewall rules are configured with ALGs enabled. This issue was caused by the code change for PR 1182910 in Junos OS 14.1X55-D30, 14.1X55-D35, 14.2R7, 15.1R5, and 16.1R2. No other versions of Junos OS and no other Juniper Networks produc…

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 2.2 | Impact: 3.6

Affected Packages4 packages

▶CVEListV5juniper_networks/junos_os4 versions+3

▶NVDjuniper/junos4 versions+3

▶juniperjuniper/junos_os

▶juniperjuniper/mx_series

🔴Vulnerability Details

GHSA

GHSA-rmq9-mr3c-m5p6: An MS-MPC or MS-MIC Service PIC may crash when large fragmented packets are passed through an Application Layer Gateway (ALG)↗2022-05-13

▶

📋Vendor Advisories

Juniper

CVE-2017-2346: An MS-MPC or MS-MIC Service PIC may crash when large fragmented packets are passed through an Application Layer Gateway (ALG). Repeated crashes of the↗2017-07-17

▶