TCP: Options Error Bad Option Length
This protocol anomaly triggers when it detects an option with a specified length that differs from the TCP specification. Because this can indicate an exploit attempt, it is recommended to drop these packets.
Extended Description
An IP packet with an option section that does not follow RFC 793 length specifications constitutes a protocol anomaly. Detection of this condition could indicate a network configuration error or that an attack involving the injection of malformed IP packets is underway.
Short Name
TCP:OPTERR:BAD-LENGTH
Severity
Major
Recommended
False
Recommended Action
Drop Packet
Category
TCP
Keywords
Bad CVE-2019-12258 Error Length Option Options
Release Date
04/22/2003
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3324
False Positive
Unknown
CVSS Score
5.0