CVE-2016-1262

Juniper Junos OS before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.1X48 before 12.3X48-D20, and 15.1X49 before 15.1X49-D30 on SRX series devices, when the Real Time Streaming Protocol Application Layer Gateway (RTSP ALG) is enabled, allow remote attackers to cause a denial of service (flowd crash) via a crafted RTSP packet.
Severity
MEDIUM
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Atk. Vector
NETWORK
Atk. Complexity
HIGH
Priv. Required
NONE
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
VendorProductVersion
juniperjunos
𝑥
≤ 12.1x46
juniperjunos
12.1x47
juniperjunos
12.1x47
juniperjunos
12.1x47
juniperjunos
12.1x47
juniperjunos
12.3x48
juniperjunos
12.3x48
juniperjunos
15.1x49
juniperjunos
15.1x49
𝑥
= Vulnerable software versions