CVE-2014-6449

Name of the Vulnerable Software and Affected Versions Juniper Junos OS versions prior to 12.1X44-D50 Juniper Junos OS version 12.1X46 prior to 12.1X46-D35 Juniper Junos OS version 12.1X47 prior to 12.1X47-D25 Juniper Junos OS version 12.3 prior to 12.3R10 Juniper Junos OS version 12.3X48 prior to 12.3X48-D15 Juniper Junos OS version 13.2 prior to 13.2R8 Juniper Junos OS version 13.3 prior to 13.3R7 Juniper Junos OS version 14.1 prior to 14.1R5 Juniper Junos OS version 14.2 prior to 14.2R1

Description The issue arises from improper handling of TCP packet reassembly, allowing remote attackers to cause a denial of service via a crafted sequence of packets destined to the device.

Recommendations For Juniper Junos OS versions prior to 12.1X44-D50, update to version 12.1X44-D50 or later. For Juniper Junos OS version 12.1X46 prior to 12.1X46-D35, update to version 12.1X46-D35 or later. For Juniper Junos OS version 12.1X47 prior to 12.1X47-D25, update to version 12.1X47-D25 or later. For Juniper Junos OS version 12.3 prior to 12.3R10, update to version 12.3R10 or later. For Juniper Junos OS version 12.3X48 prior to 12.3X48-D15, update to version 12.3X48-D15 or later. For Juniper Junos OS version 13.2 prior to 13.2R8, update to version 13.2R8 or later. For Juniper Junos OS version 13.3 prior to 13.3R7, update to version 13.3R7 or later. For Juniper Junos OS version 14.1 prior to 14.1R5, update to version 14.1R5 or later. For Juniper Junos OS version 14.2 prior to 14.2R1, update to version 14.2R1 or later.