2 matches found
Juniper Junos SRX Series UAC Enforcer HTTP Remote Code Execution (JSA10574)
According to its self-reported version number, the remote Junos device has a remote code execution vulnerability. Sending a specially crafted HTTP request to an SRX series device can result in arbitrary code execution. A remote, unauthenticated attacker could exploit this to execute arbitrary cod...
CVE-2013-4685
Juniper Junos OS contains a buffer overflow in flowd when processing HTTP messages (CVE-2013-4685). Affected are SRX devices with Captive Portal and UAC enforcer role across listed revisions: 10.4 before 10.4S14; 11.4 before 11.4R7; 12.1 before 12.1R6; and 12.1X44 before 12.1X44-D15. The vulnerab...