PT-2013-5139 · Juniper Networks · Junos
Publicado
2013-07-11
·
Atualizado
2017-08-29
·
CVE-2013-4690
CVSS v2.0
5.0
Média
| Vetor | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Juniper Junos versions 10.4 before 10.4S13
Juniper Junos versions 11.4 before 11.4R7-S1
Juniper Junos versions 12.1 before 12.1R5-S3
Juniper Junos versions 12.1X44 before 12.1X44-D20
Juniper Junos versions 12.1X45 before 12.1X45-D10
Description
The issue is related to the improper initialization of memory locations used during padding of Ethernet packets. This allows remote attackers to obtain sensitive information by reading packet data.
Recommendations
For Juniper Junos version 10.4, update to 10.4S13 or later.
For Juniper Junos version 11.4, update to 11.4R7-S1 or later.
For Juniper Junos version 12.1, update to 12.1R5-S3 or later.
For Juniper Junos version 12.1X44, update to 12.1X44-D20 or later.
For Juniper Junos version 12.1X45, update to 12.1X45-D10 or later.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Junos