On SRX5000 Series devices, if 'set security zones security-zone <zone> tcp-rst' is configured, the flowd process may crash when a specific TCP packet is received by the device and triggers a new session. The process restarts automatically. However, receipt of a constant stream of these TCP packets may result in an extended Denial of Service (DoS) condition on the device. This issue affects Juniper Networks Junos OS: 18.2R3 on SRX 5000 Series; 18.4R2 on SRX 5000 Series; 19.2R1 on SRX 5000 Series.
References
Link | Resource |
---|---|
https://kb.juniper.net/JSA10963 | Vendor Advisory |
https://kb.juniper.net/JSA10963 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 04:16
Type | Values Removed | Values Added |
---|---|---|
References | () https://kb.juniper.net/JSA10963 - Vendor Advisory |
Information
Published : 2019-10-09 20:15
Updated : 2024-11-21 04:16
NVD link : CVE-2019-0064
Mitre link : CVE-2019-0064
CVE.ORG link : CVE-2019-0064
JSON object : View
Products Affected
juniper
- srx5600
- srx5800
- srx5400
- junos
CWE