ISS X-Force Database: netscreen-screenos-sshv1-dos(16876): NetScreen ScreenOS SSHv1 denial of service

NetScreen ScreenOS SSHv1 denial of service

netscreen-screenos-sshv1-dos (16876)

Medium Risk

Description:

NetScreen is vulnerable to a denial of service attack. If SSHv1 is enabled, a remote attacker could establish a connection to the SSHv1 service to cause the device to hang or reboot.

Consequences:

Denial of Service

Remedy:

For ScreenOS 5.x:
Upgrade to the latest version (5.0.0r8 or 5.0.0r8.1 or later), as listed in Juniper Networks NetScreen Advisory 59147. See References.

For ScreenOS 4.x:
Upgrade to the latest version (4.0.0r13 or 4.0.1r11 or 4.0.3r8 or 4.0.1-Dial2r5 or 4.0.1-SBRr5 or 4.0.1-IGMP3r4 or 4.0.1-MCASTr2 or later), as listed in Juniper Networks NetScreen Advisory 59147. See References.

For ScreenOS 3.x:
Upgrade to the latest version (3.0.3r9 or later), as listed in Juniper Networks NetScreen Advisory 59147. See References.

References:

Juniper Networks NetScreen Advisory 59147: Remote crash of ScreenOS via the SSHv1 service.
BID-10854: Juniper Networks NetScreen SSHv1 Denial Of Service Vulnerability
CVE-2004-1446: Unknown vulnerability in ScreenOS in Juniper Networks NetScreen firewall 3.x through 5.x allows remote attackers to cause a denial of service (device reboot or hang) via a crafted SSH v1 packet.
SA12208: NetScreen ScreenOS SSHv1 Denial of Service Vulnerability
US-CERT VU#749870: Juniper Networks NetScreen firewall contains a DoS vulnerability in the SSHv1 service

Platforms Affected:

Juniper NetScreen ScreenOS 1.64
Juniper NetScreen ScreenOS 1.66
Juniper NetScreen ScreenOS 1.66r2
Juniper NetScreen ScreenOS 1.7
Juniper NetScreen ScreenOS 1.73r1
Juniper NetScreen ScreenOS 1.73r2
Juniper NetScreen ScreenOS 2.0.1r8
Juniper NetScreen ScreenOS 2.1
Juniper NetScreen ScreenOS 2.10r3
Juniper NetScreen ScreenOS 2.10r4
Juniper NetScreen ScreenOS 2.1r6
Juniper NetScreen ScreenOS 2.1r7
Juniper NetScreen ScreenOS 2.5
Juniper NetScreen ScreenOS 2.5r1
Juniper NetScreen ScreenOS 2.5r2
Juniper NetScreen ScreenOS 2.5r6
Juniper NetScreen ScreenOS 2.6.0
Juniper NetScreen ScreenOS 2.6.1
Juniper NetScreen ScreenOS 2.6.1r1
Juniper NetScreen ScreenOS 2.6.1r10
Juniper NetScreen ScreenOS 2.6.1r11
Juniper NetScreen ScreenOS 2.6.1r12
Juniper NetScreen ScreenOS 2.6.1r2
Juniper NetScreen ScreenOS 2.6.1r3
Juniper NetScreen ScreenOS 2.6.1r4
Juniper NetScreen ScreenOS 2.6.1r5
Juniper NetScreen ScreenOS 2.6.1r6
Juniper NetScreen ScreenOS 2.6.1r7
Juniper NetScreen ScreenOS 2.6.1r8
Juniper NetScreen ScreenOS 2.6.1r9
Juniper NetScreen ScreenOS 2.7.1
Juniper NetScreen ScreenOS 2.7.1r1
Juniper NetScreen ScreenOS 2.7.1r2
Juniper NetScreen ScreenOS 2.7.1r3
Juniper NetScreen ScreenOS 2.8.0
Juniper NetScreen ScreenOS 2.8.0r1
Juniper NetScreen ScreenOS 3.0.0
Juniper NetScreen ScreenOS 3.0.0r1
Juniper NetScreen ScreenOS 3.0.0r2
Juniper NetScreen ScreenOS 3.0.0r3
Juniper NetScreen ScreenOS 3.0.0r4
Juniper NetScreen ScreenOS 3.0.1
Juniper NetScreen ScreenOS 3.0.1r1
Juniper NetScreen ScreenOS 3.0.1r2
Juniper NetScreen ScreenOS 3.0.1r3
Juniper NetScreen ScreenOS 3.0.1r4
Juniper NetScreen ScreenOS 3.0.1r5
Juniper NetScreen ScreenOS 3.0.1r6
Juniper NetScreen ScreenOS 3.0.1r7
Juniper NetScreen ScreenOS 3.0.2
Juniper NetScreen ScreenOS 3.0.3
Juniper NetScreen ScreenOS 3.0.3r1
Juniper NetScreen ScreenOS 3.0.3r1.1
Juniper NetScreen ScreenOS 3.0.3r2
Juniper NetScreen ScreenOS 3.0.3r3
Juniper NetScreen ScreenOS 3.0.3r4
Juniper NetScreen ScreenOS 3.0.3r5
Juniper NetScreen ScreenOS 3.0.3r6
Juniper NetScreen ScreenOS 3.0.3r7
Juniper NetScreen ScreenOS 3.0.3r8
Juniper NetScreen ScreenOS 3.1
Juniper NetScreen ScreenOS 3.1.0r1
Juniper NetScreen ScreenOS 3.1.0r10
Juniper NetScreen ScreenOS 3.1.0r11
Juniper NetScreen ScreenOS 3.1.0r12
Juniper NetScreen ScreenOS 3.1.0r2
Juniper NetScreen ScreenOS 3.1.0r3
Juniper NetScreen ScreenOS 3.1.0r4
Juniper NetScreen ScreenOS 3.1.0r5
Juniper NetScreen ScreenOS 3.1.0r6
Juniper NetScreen ScreenOS 3.1.0r7
Juniper NetScreen ScreenOS 3.1.0r8
Juniper NetScreen ScreenOS 3.1.0r9
Juniper NetScreen ScreenOS 3.1.1r2
Juniper NetScreen ScreenOS 4.0.0
Juniper NetScreen ScreenOS 4.0.0 Dial
Juniper NetScreen ScreenOS 4.0.0r1
Juniper NetScreen ScreenOS 4.0.0r10
Juniper NetScreen ScreenOS 4.0.0r11
Juniper NetScreen ScreenOS 4.0.0r12
Juniper NetScreen ScreenOS 4.0.0r2
Juniper NetScreen ScreenOS 4.0.0r3
Juniper NetScreen ScreenOS 4.0.0r4
Juniper NetScreen ScreenOS 4.0.0r5
Juniper NetScreen ScreenOS 4.0.0r6
Juniper NetScreen ScreenOS 4.0.0r7
Juniper NetScreen ScreenOS 4.0.0r8
Juniper NetScreen ScreenOS 4.0.0r9
Juniper NetScreen ScreenOS 4.0.1
Juniper NetScreen ScreenOS 4.0.1r1
Juniper NetScreen ScreenOS 4.0.1r10
Juniper NetScreen ScreenOS 4.0.1r2
Juniper NetScreen ScreenOS 4.0.1r3
Juniper NetScreen ScreenOS 4.0.1r4
Juniper NetScreen ScreenOS 4.0.1r5
Juniper NetScreen ScreenOS 4.0.1r6
Juniper NetScreen ScreenOS 4.0.1r7
Juniper NetScreen ScreenOS 4.0.1r8
Juniper NetScreen ScreenOS 4.0.1r9
Juniper NetScreen ScreenOS 4.0.2
Juniper NetScreen ScreenOS 4.0.3
Juniper NetScreen ScreenOS 4.0.3r1
Juniper NetScreen ScreenOS 4.0.3r2
Juniper NetScreen ScreenOS 4.0.3r3
Juniper NetScreen ScreenOS 4.0.3r4
Juniper NetScreen ScreenOS 5.0

Reported:

Aug 03, 2004

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page