[原文]Juniper NetScreen-Security Manager (NSM) 2004 FP2 and FP3 allow remote attackers to cause a denial of service (crash or hang of server components that are automatically restarted) via a long crafted string on (1) port 7800 (the GUI Server port) or (2) port 7801 (the Device Server port).
NetScreen Security Manager (NSM) guiSrv/devSrv Crafted String Remote DoS
Remote / Network Access
Denial of Service
Loss of Availability
Juniper Netscreen Security Manager contains a flaw that may allow a remote denial of service. The issue is triggered when specially crafted long strings are sent to the 'guiSrv' or 'devSrv' processes, which will crash the services and therefore result in loss of availability for the services.
Note that the watchdog service installed on NSM will restart the crashed service after about five minutes.
Upgrade to version FP4r1 (aka '2005.1') or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.