Buffer overflow in Juniper Junos

CVE-2013-6013

Buffer overflow in the flow daemon (flowd) in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R7-S2, 12.1.X44 before 12.1X44-D15, 12.1X45 before 12.1X45-D10 on SRX devices, when using telnet pass-through authentication on the firewall…

Vulnerability class: Buffer Overflow

EPSS: 0.059 (90.8th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

62962 (vdb-entry, x_refsource_BID)
98369 (x_refsource_OSVDB, vdb-entry)
1029175 (vdb-entry, x_refsource_SECTRACK)
juniper-junos-cve20136013-bo(87847) (vdb-entry, x_refsource_XF)
cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
55109 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)