CVE-2017-2346 MS-MPC or MS-MIC crash when passing large fragmented traffic through an ALG

🗓️ 14 Jul 2017 14:00:00Reported by juniperType

MS-MPC or MS-MIC crash with large fragmented traffic through AL

Reporter	Title	Published	Views	Family All 7
CNVD	Juniper MX Series Appliance Junos OS ALG Denial of Service Vulnerability	20 Jul 201700:00	–	cnvd
CVE	CVE-2017-2346	14 Jul 201714:00	–	cve
EUVD	EUVD-2017-11529	7 Oct 202500:30	–	euvd
Tenable Nessus	Juniper Junos ALG Fragmented Traffic Handling MS-MPC / MS-MIC Service PIC DoS (JSA10794)	23 Aug 201700:00	–	nessus
NVD	CVE-2017-2346	17 Jul 201713:18	–	nvd
OpenVAS	Juniper Networks Junos OS MS-MPC or MS-MIC DoS Vulnerability	13 Jul 201700:00	–	openvas
Prion	Design/Logic Flaw	17 Jul 201713:18	–	prion

[
  {
    "platforms": [
      "MX Series"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "status": "affected",
        "version": "14.1X55 from 14.1X55-D30 prior to 14.1X55-D35"
      },
      {
        "status": "affected",
        "version": "14.2R from 14.2R7 prior to 14.2R7-S4, 14.2R8"
      },
      {
        "status": "affected",
        "version": "15.1R from 15.1R5 prior to 15.1R5-S2, 15.1R6"
      },
      {
        "status": "affected",
        "version": "16.1R from 16.1R2 prior to 16.1R3-S2, 16.1R4"
      }
    ]
  }
]

Source	Link
securitytracker	www.securitytracker.com/id/1038895
kb	www.kb.juniper.net/JSA10794

15 Jul 2017 09:57Current

5.8Medium risk

Vulners AI Score5.8

CVSS 35.9

EPSS0.00267

cve-2017-2346 junos os denial of service alg nat stateful-firewall juniper networks mx platforms