Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-6383

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2014-6383
Last Modified 26 Jan 2015 02:35:16
Published 16 Jan 2015 11:59:04
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-6383

Summary

The stateless firewall in Juniper Junos 13.3R3, 14.1R1, and 14.1R2, when using Trio-based PFE modules, does not properly match ports, which might allow remote attackers to bypass firewall rule.

Vulnerable Systems

Operating System

  • Juniper Junos 13.3

  • Juniper Junos 14.1

  • Juniper Junos 14.2


References

CONFIRM - https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10666

BID - 72071

SECTRACK - 1031549


Last Updated: 27 May 2016 11:07:37