CVE-2013-6013

medium

Description

Buffer overflow in the flow daemon (flowd) in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R7-S2, 12.1.X44 before 12.1X44-D15, 12.1X45 before 12.1X45-D10 on SRX devices, when using telnet pass-through authentication on the firewall, might allow remote attackers to execute arbitrary code via a crafted telnet message.

References

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10594

http://osvdb.org/98369

http://secunia.com/advisories/55109

http://www.securityfocus.com/bid/62962

http://www.securitytracker.com/id/1029175

https://exchange.xforce.ibmcloud.com/vulnerabilities/87847

Details

Source: MITRE

Published: 2013-10-17

Updated: 2017-08-29

Type: CWE-119

Risk Information

CVSS v2

Base Score: 6.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 8.6

Severity: MEDIUM