|
Juniper NetScreen Security Manager Potential Denial of Service
|
|
Secunia Advisory:
|
SA18232
|
|
|
Release Date:
|
2005-12-29
|
|
Last Update:
|
2006-01-19
|
|
Popularity:
|
5,866 views
|
|
|
Critical:
|
Less critical
|
|
Impact:
|
DoS
|
|
Where:
|
From local network
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | NetScreen-Security Manager (NSM) 2004
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities 
|
|
Description:
David Maciejak has reported a vulnerability in NetScreen Security Manager (NSM) which potentially can be exploited by malicious people to cause a DoS (Denial of Service).
The vulnerability is caused due to an unspecified error in "guiSrv" and "devSrv". This can be exploited to crash the service via specially crafted packets sent to port 7800 and 7801. The service reportedly will automatically be restarted by the watchdog service when it crashes.
The vulnerability has been reported in NSM 2004 FP2 and FP3, and affects all versions prior to FP4r1 (2005.1).
Solution:
Update to version FP4r1 (2005.1).
Provided and/or discovered by:
David Maciejak
Changelog:
2006-01-19: Updated "Description" and "Original Advisory" sections.
Original Advisory:
Juniper Networks:
http://www.juniper.net/support/security/alerts/PSN-2006-01-005.txt
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
