Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-6386

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2014-6386
Last Modified 26 Jan 2015 02:38:14
Published 16 Jan 2015 11:59:07
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-6386

Summary

Juniper Junos 11.4 before 11.4R8, 12.1X44 before 12.1X44-D35, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, 12.1X47 before 12.1X47-D10, 12.2 before 12.2R9, 12.3R2 before 12.3R2-S3, 12.3 before 12.3R3, 13.1 before 13.1R4, and 13.2 before 13.2R1 allows remote attackers to cause a denial of service (assertion failure and rpd restart) via a crafted BGP FlowSpec prefix.

Vulnerable Systems

Operating System

  • Juniper Junos 11.4

  • Juniper Junos 12.1x44

  • Juniper Junos 12.1x45

  • Juniper Junos 12.1x46

  • Juniper Junos 12.1x47

  • Juniper Junos 12.2

  • Juniper Junos 12.3

  • Juniper Junos 13.1

  • Juniper Junos 13.2


References

CONFIRM - https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10670

BID - 72067

SECTRACK - 1031548


Last Updated: 27 May 2016 11:07:38