PT-2013-5139 · Juniper Networks · Junos
Published
2013-07-11
·
Updated
2017-08-29
·
CVE-2013-4690
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Juniper Junos versions 10.4 before 10.4S13
Juniper Junos versions 11.4 before 11.4R7-S1
Juniper Junos versions 12.1 before 12.1R5-S3
Juniper Junos versions 12.1X44 before 12.1X44-D20
Juniper Junos versions 12.1X45 before 12.1X45-D10
Description
The issue is related to the improper initialization of memory locations used during padding of Ethernet packets. This allows remote attackers to obtain sensitive information by reading packet data.
Recommendations
For Juniper Junos version 10.4, update to 10.4S13 or later.
For Juniper Junos version 11.4, update to 11.4R7-S1 or later.
For Juniper Junos version 12.1, update to 12.1R5-S3 or later.
For Juniper Junos version 12.1X44, update to 12.1X44-D20 or later.
For Juniper Junos version 12.1X45, update to 12.1X45-D10 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Junos