Title: NFR Null TCP Packet Vulnerability
Severity: HIGH
Description:
Upon receiving a IP packet with the protocol field set to TCP but with an all null TCP header and data section nfrd will die.
nfrd wiill be automatically restarted but the attack packet does not get logged. The nfrd.log file will also be overwritten by the new instance of nfrd.
This opens a window of opourtunity for an attacker to send packets that will not be process by nfrd while it is restarting.
Affected Products:
- NFR NFR 1.5.0
- NFR NFR 1.6.1
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
