PT-2013-5137 · Juniper Networks · Junos

Published

2013-07-11

Updated

2013-08-22

CVE-2013-4687

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Junos versions prior to 10.4S14 Junos versions 11.2 and 11.4 prior to 11.4R6-S2 Junos versions 12.1 prior to 12.1R6 on SRX devices

Description The issue allows remote attackers to cause a denial of service, resulting in a daemon crash, via crafted TCP packets when certain Application Layer Gateways (ALGs) are enabled.

Recommendations For Junos versions prior to 10.4S14, update to version 10.4S14 or later. For Junos versions 11.2 and 11.4 prior to 11.4R6-S2, update to version 11.4R6-S2 or later. For Junos versions 12.1 prior to 12.1R6 on SRX devices, update to version 12.1R6 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2013-4687

Affected Products

Junos

PT-2013-5137 · Juniper Networks · Junos

CVE-2013-4687

Related Identifiers

Affected Products

References · 3