CVE-2013-6013

Sažetak

Buffer overflow in the flow daemon (flowd) in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R7-S2, 12.1.X44 before 12.1X44-D15, 12.1X45 before 12.1X45-D10 on SRX devices, when using telnet pass-through authentication on the firewall, might allow remote attackers to execute arbitrary code via a crafted telnet message.

Reference

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10594
http://osvdb.org/98369
http://secunia.com/advisories/55109
http://www.securityfocus.com/bid/62962
http://www.securitytracker.com/id/1029175
https://exchange.xforce.ibmcloud.com/vulnerabilities/87847

CVSS

Base:	6.8
Impact:	6.4
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

29-08-2017 - 01:33

Objavljeno

17-10-2013 - 23:55