Lucene search

[email protected]CVE-2013-4684

HistoryJul 11, 2013 - 2:55 p.m.

CVE-2013-4684

2013-07-1114:55:01

[email protected]

web.nvd.nist.gov

cve-2013-4684

juniper junos

denial of service

pim

nat

security vulnerability

remote attack

6.8 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.009 Low

EPSS

Percentile

82.5%

JSON

flowd in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R8, 12.1 before 12.1R7, and 12.1X44 before 12.1X44-D15 on SRX devices, when PIM and NAT are enabled, allows remote attackers to cause a denial of service (daemon crash) via crafted PIM packets, aka PR 842253.

Affected configurations

NVD

Node

juniperjunosMatch10.4

juniperjunosMatch11.4

juniperjunosMatch12.1

juniperjunosMatch12.1x44

AND

junipersrx100Match-

junipersrx110Match-

junipersrx1400Match-

junipersrx210Match-

junipersrx220Match-

junipersrx240Match-

junipersrx3400Match-

junipersrx3600Match-

junipersrx550Match-

junipersrx5600Match-

junipersrx5800Match-

junipersrx650Match-

CPENameOperatorVersion
juniper:junosjuniper junoseq10.4
juniper:junosjuniper junoseq11.4
juniper:junosjuniper junoseq12.1
juniper:junosjuniper junoseq12.1x44
juniper:srx100juniper srx100eq-
juniper:srx110juniper srx110eq-
juniper:srx1400juniper srx1400eq-
juniper:srx210juniper srx210eq-
juniper:srx220juniper srx220eq-
juniper:srx240juniper srx240eq-

CPE	Name	Operator	Version
juniper:junos	juniper junos	eq	10.4
juniper:junos	juniper junos	eq	11.4
juniper:junos	juniper junos	eq	12.1
juniper:junos	juniper junos	eq	12.1x44
juniper:srx100	juniper srx100	eq	-
juniper:srx110	juniper srx110	eq	-
juniper:srx1400	juniper srx1400	eq	-
juniper:srx210	juniper srx210	eq	-
juniper:srx220	juniper srx220	eq	-
juniper:srx240	juniper srx240	eq	-