Login

Cloud Defense Logo

Products

Solutions

Company

Book A Live Demo

CVE-2018-0002 : Vulnerability Insights and Analysis

Learn about CVE-2018-0002, a memory corruption vulnerability in Junos OS affecting SRX and MX series devices with ALG enabled. Find out the impacted systems, exploitation mechanism, and mitigation steps.

A memory corruption vulnerability in Junos OS can lead to a denial of service on SRX and MX series devices with ALG enabled.

Understanding CVE-2018-0002

This CVE involves a flowd daemon crash due to manipulated TCP/IP response packets, causing a sustained denial of service situation.

What is CVE-2018-0002?

The vulnerability results in memory corruption on SRX and MX series devices with ALG enabled, leading to flowd daemon crashes and extended denial of service.

The Impact of CVE-2018-0002

The vulnerability has a CVSS base score of 8.2 (High) with a low attack complexity and high availability impact, affecting specific Junos OS versions on SRX and MX series devices.

Technical Details of CVE-2018-0002

This section provides detailed technical information about the vulnerability.

Vulnerability Description

The issue causes a flowd daemon crash on SRX and MX series devices with ALG enabled when processing manipulated TCP/IP response packets, resulting in memory corruption.

Affected Systems and Versions

        SRX series: Junos OS 12.1X46-D60, 12.3X48-D35, 15.1X49-D60
        MX series: Junos OS 14.1R9, 14.2R8, 15.1R5-S8, 15.1F6-S9, 15.1R6-S4, 15.1R7, 16.1R6, 16.2R3, 17.1R2-S4, 17.1R3

Exploitation Mechanism

The vulnerability is exploited by sending crafted TCP/IP response packets to devices with ALG enabled, triggering memory corruption and flowd daemon crashes.

Mitigation and Prevention

Learn how to mitigate and prevent the CVE-2018-0002 vulnerability.

Immediate Steps to Take

        Apply the provided software releases: 12.1X46-D60, 12.3X48-D35, 14.1R9, 14.2R8, 15.1X49-D60, 15.1R5-S8, 15.1R6-S4, 15.1F6-S9, 15.1R7, 16.1R6, 16.2R3, 17.1R2-S4, 17.1R3, 17.2R1, and subsequent releases.
        Disable IPv4 ALG's on affected devices.

Long-Term Security Practices

        Regularly update Junos OS to the latest versions to patch known vulnerabilities.
        Implement network segmentation and access controls to limit the impact of potential attacks.

Patching and Updates

Ensure all affected devices are updated with the latest software releases provided by Juniper Networks to address the vulnerability.

Popular CVEs

CVE Id

Published Date

Is your System Free of Underlying Vulnerabilities?
Find Out Now