A denial-of-service vulnerability has been identified in the Packet Forwarding Engine of Juniper Networks Junos OS. This issue affects MX Series with MS-MPC, MS-MIC and SPC3, as well as SRX Series. The vulnerability arises from improper handling of specific SIP INVITE messages by the SIP Application Layer Gateway (ALG). An unauthenticated, network-based attacker can exploit this vulnerability, causing memory corruption that leads to a crash of the Forwarding Plane Component (FPC) processing the affected packets. Although the system automatically recovers by restarting the FPC, the issue reoccurs with subsequent SIP INVITES, resulting in a sustained denial-of-service condition.
Exploitation of this vulnerability causes a crash of the FPC processing the affected SIP INVITE packets, leading to a denial-of-service condition. The system can automatically recover by restarting the FPC, but the issue will reoccur with subsequent affected SIP INVITES, causing a prolonged denial-of-service situation.
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.
