Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 IP:OPTERR:INVALID-LENGTH

Severity

 Medium

Recommended

 No

Category

 IP

Release Date

 2003/04/22

Update Number

 1213

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

IP: Invalid Length


This protocol anomaly triggers when it detects an IP packet with an IP option of invalid length. Because some IP options are dangerous (and others have only limited use), you may choose to drop these packets.

Extended Description

A remote attacker could craft a packet having an option length that does not follow the RFC specification, and cause a denial of service condition. Malicious code could also be executed with the privileges of the running process.

References

  • URL: http://www.rhyshaden.com/ipdgram.htm

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out