Support Support Downloads Knowledge Base Case Manager My Juniper Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

Various implementations of the Session Initiation Protocol (SIP) contain vulnerabilities (CERT Advisory CA-2003-06)

0

0

Article ID: JSA10308 SECURITY_ADVISORIES Last Updated: 09 May 2013Version: 2.0
Legacy Advisory Id:
PSN-2003-02-006
Product Affected:
All Juniper Networks M-series, J-series, and T-series routers
Problem:
Vulnerabilities have been reported in SIP implementations provided by various software vendors. SIP is not implemented on Juniper Networks M-series, J-series, and T-series routers. Therefore, these routers neither generate, respond to, nor act as a proxy for SIP messages. However, to prevent SIP messages from entering networks that contain vulnerable SIP-aware devices, customers might want to use the packet filtering features available in JUNOS software.
Solution:
The JUNOS software provides a firewall filter capability that can be used to block SIP messages.
Implementation:
To prevent SIP messages from being forwarded, construct a firewall filter similar to the following example (or add equivalent filter term to an existing filter), then apply the firewall filter as an input filter on all interfaces.

      [edit]
      user@router# show firewall filter block-SIP
       
      term no-SIP {
          from {
              protocol [tcp udp];
              destination-port 5060;
              fragment-offset 0;
          }
          then discard;
      }
      term pass-other {
          then accept;
      }
Severity Level:
None
Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search