CVE-2013-6013

medium

Description

Buffer overflow in the flow daemon (flowd) in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R7-S2, 12.1.X44 before 12.1X44-D15, 12.1X45 before 12.1X45-D10 on SRX devices, when using telnet pass-through authentication on the firewall, might allow remote attackers to execute arbitrary code via a crafted telnet message.

References

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10594

http://secunia.com/advisories/55109

https://exchange.xforce.ibmcloud.com/vulnerabilities/87847

http://www.securitytracker.com/id/1029175

Details

Published: 2013-10-17

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Severity: Medium