Juniper ScreenOS 6.3, and possibly earlier versions, is vulnerable to a denial of service from malformed SSL packets.
Juniper ScreenOS 6.3, and possibly earlier versions, is vulnerable to a denial of service from malformed SSL packets. Additional details may be found in Juniper security advisory JSA10624.
A remote unauthenticated attacker may be able to produce an extended denial of service against a ScreenOS firewall by repeatedly sending malformed SSL/TLS packets to the device.
Juniper security advisory JSA10624 recommends the following workaround.
Thanks to David Klein of DHK Enterprises for reporting this vulnerability.
|Date First Published:||2014-05-16|
|Date Last Updated:||2014-05-16 15:05 UTC|