CVE-2013-4685

Name of the Vulnerable Software and Affected Versions Junos versions 10.4 before 10.4S14 Junos versions 11.4 before 11.4R7 Junos versions 12.1 before 12.1R6 Junos versions 12.1X44 before 12.1X44-D15

Description A buffer overflow issue in flowd in Junos, when Captive Portal is enabled with the UAC enforcer role, allows remote attackers to execute arbitrary code via crafted HTTP requests.

Recommendations For Junos versions 10.4 before 10.4S14, update to 10.4S14 or later. For Junos versions 11.4 before 11.4R7, update to 11.4R7 or later. For Junos versions 12.1 before 12.1R6, update to 12.1R6 or later. For Junos versions 12.1X44 before 12.1X44-D15, update to 12.1X44-D15 or later.