CVE-2019-0064

On SRX5000 Series devices, if 'set security zones security-zone <zone> tcp-rst' is configured, the flowd process may crash when a specific TCP packet is received by the device and triggers a new session. The process restarts automatically. However, receipt of a constant stream of these TCP packets may result in an extended Denial of Service (DoS) condition on the device. This issue affects Juniper Networks Junos OS: 18.2R3 on SRX 5000 Series; 18.4R2 on SRX 5000 Series; 19.2R1 on SRX 5000 Series.
References
Link Resource
https://kb.juniper.net/JSA10963 Vendor Advisory
https://kb.juniper.net/JSA10963 Vendor Advisory
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:juniper:junos:18.2:r3:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:18.4:r2:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:19.2:r1:*:*:*:*:*:*
OR cpe:2.3:h:juniper:srx5400:-:*:*:*:*:*:*:*
cpe:2.3:h:juniper:srx5600:-:*:*:*:*:*:*:*
cpe:2.3:h:juniper:srx5800:-:*:*:*:*:*:*:*

History

21 Nov 2024, 04:16

Type Values Removed Values Added
References () https://kb.juniper.net/JSA10963 - Vendor Advisory () https://kb.juniper.net/JSA10963 - Vendor Advisory

Information

Published : 2019-10-09 20:15

Updated : 2024-11-21 04:16


NVD link : CVE-2019-0064

Mitre link : CVE-2019-0064

CVE.ORG link : CVE-2019-0064


JSON object : View

Products Affected

juniper

  • srx5600
  • srx5800
  • srx5400
  • junos