Vigil@nce - NetScreen ScreenOS: denial of service during a scan
May 2012 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can send malformed packets to NetScreen ScreenOS, in
order to stop it.
Severity: 2/4
Creation date: 16/04/2012
IMPACTED PRODUCTS
– NetScreen Firewall
– NetScreen ScreenOS
DESCRIPTION OF THE VULNERABILITY
The NetScreen ScreenOS product analyzes received packets.
However, if a packet contains a malformed field, a NULL pointer is
dereferenced. Technical details are unknown.
An attacker can therefore send malformed packets to NetScreen
ScreenOS, in order to stop it.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/NetScreen-ScreenOS-denial-of-service-during-a-scan-11542