Juniper Junos SIP DoS (PSN-2013-04-911)
High Nessus Plugin ID 66509
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version number, the remote Junos device has a denial of service vulnerability. When the SIP ALG feature is enabled, a specially crafted SIP packet can cause the flowd process to crash. A remote, unauthenticated attacker could exploit this to drop all existing network traffic.
SolutionApply the relevant Junos upgrade referenced in Juniper advisory PSN-2013-04-911.