Juniper ScreenOS 5.4 < 5.4.0r28 / 6.2 < 6.2.0r18 / 6.3 < 6.3.0r16 Malformed ICMP Echo Request DoS (JSA10604)

This script is Copyright (C) 2014 Tenable Network Security, Inc.

Synopsis :

The remote host is affected by a denial of service vulnerability.

Description :

The remote host is running a version of Juniper ScreenOS prior to
5.4.0r28 / 6.2.0r18 / 6.3.0r16. It is, therefore, affected by a denial
of service vulnerability due to a failure to properly handle ICMP echo
request packets.

A remote, unauthenticated attacker could potentially exploit this
vulnerability by sending malformed ICMP echo request packets to cause
a firewall crash or failover. Repeated exploitation can result in an
extended denial of service condition.

Note that the host is not affected if the 'Ping of Death' screen is

See also :

Solution :

Upgrade to 5.4.0r28 / 6.2.0r18 / 6.3.0r16 or later or apply the

Risk factor :

High / CVSS Base Score : 7.1
CVSS Temporal Score : 6.7
Public Exploit Available : false

Family: Firewalls

Nessus Plugin ID: 74367 ()

Bugtraq ID: 64260

CVE ID: CVE-2013-6958

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now