CVE-2014-6386

Name of the Vulnerable Software and Affected Versions Juniper Junos versions 11.4 through 11.4R8 Juniper Junos versions 12.1X44 through 12.1X44-D35 Juniper Junos versions 12.1X45 through 12.1X45-D25 Juniper Junos versions 12.1X46 through 12.1X46-D20 Juniper Junos versions 12.1X47 through 12.1X47-D10 Juniper Junos versions 12.2 through 12.2R9 Juniper Junos versions 12.3R2 through 12.3R2-S3 Juniper Junos versions 12.3 through 12.3R3 Juniper Junos versions 13.1 through 13.1R4 Juniper Junos versions 13.2 through 13.2R1

Description The issue allows remote attackers to cause a denial of service via a crafted BGP FlowSpec prefix, resulting in an assertion failure and rpd restart.

Recommendations For Juniper Junos version 11.4, update to 11.4R8 or later. For Juniper Junos version 12.1X44, update to 12.1X44-D35 or later. For Juniper Junos version 12.1X45, update to 12.1X45-D25 or later. For Juniper Junos version 12.1X46, update to 12.1X46-D20 or later. For Juniper Junos version 12.1X47, update to 12.1X47-D10 or later. For Juniper Junos version 12.2, update to 12.2R9 or later. For Juniper Junos version 12.3R2, update to 12.3R2-S3 or later. For Juniper Junos version 12.3, update to 12.3R3 or later. For Juniper Junos version 13.1, update to 13.1R4 or later. For Juniper Junos version 13.2, update to 13.2R1 or later.