Details of VAR-201307-0477

ID

VAR-201307-0477

CVE

CVE-2013-4687

TITLE

Juniper Networks SRX Runs on the device Junos of flowd Service disruption in (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2013-003334

DESCRIPTION

flowd in Juniper Junos 10.4 before 10.4S14, 11.2 and 11.4 before 11.4R6-S2, and 12.1 before 12.1R6 on SRX devices, when certain Application Layer Gateways (ALGs) are enabled, allows remote attackers to cause a denial of service (daemon crash) via crafted TCP packets, aka PRs 727980, 806269, and 835593. Juniper Networks Junos is prone to multiple denial-of-service vulnerabilities. Attackers can exploit these issues to cause the host system to crash, resulting in a denial-of-service condition. The operating system provides a secure programming interface and Junos SDK. A security vulnerability exists in flowd in Juniper Junos 10.4 prior to 10.4S14, 11.4 prior to 11.2 and 11.4R6-S2, and 12.1 prior to 12.1R6 on SRX Series Server Gateway devices

Trust: 1.98

sources: NVD: CVE-2013-4687 // JVNDB: JVNDB-2013-003334 // BID: 61122 // VULHUB: VHN-64689

AFFECTED PRODUCTS

vendor:	juniper	model:	junos	scope:	eq	version:	12.1	Trust: 1.9
vendor:	juniper	model:	junos	scope:	eq	version:	11.4	Trust: 1.9
vendor:	juniper	model:	junos	scope:	eq	version:	11.2	Trust: 1.9
vendor:	juniper	model:	junos	scope:	eq	version:	10.4	Trust: 1.9
vendor:	juniper	model:	srx3600	scope:	eq	version:	-	Trust: 1.0
vendor:	juniper	model:	srx100	scope:	eq	version:	-	Trust: 1.0
vendor:	juniper	model:	srx240	scope:	eq	version:	-	Trust: 1.0
vendor:	juniper	model:	srx550	scope:	eq	version:	-	Trust: 1.0
vendor:	juniper	model:	srx210	scope:	eq	version:	-	Trust: 1.0
vendor:	juniper	model:	srx110	scope:	eq	version:	-	Trust: 1.0
vendor:	juniper	model:	srx1400	scope:	eq	version:	-	Trust: 1.0
vendor:	juniper	model:	srx3400	scope:	eq	version:	-	Trust: 1.0
vendor:	juniper	model:	srx650	scope:	eq	version:	-	Trust: 1.0
vendor:	juniper	model:	srx220	scope:	eq	version:	-	Trust: 1.0
vendor:	juniper	model:	srx5800	scope:	eq	version:	-	Trust: 1.0
vendor:	juniper	model:	srx5600	scope:	eq	version:	-	Trust: 1.0
vendor:	juniper	model:	srx3400	scope:	-	version:	-	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	10.4	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	11.4	Trust: 0.8
vendor:	juniper	model:	srx210	scope:	-	version:	-	Trust: 0.8
vendor:	juniper	model:	srx650	scope:	-	version:	-	Trust: 0.8
vendor:	juniper	model:	srx550	scope:	-	version:	-	Trust: 0.8
vendor:	juniper	model:	srx5800	scope:	-	version:	-	Trust: 0.8
vendor:	juniper	model:	srx100	scope:	-	version:	-	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	12.1r6	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	11.4r6-s2	Trust: 0.8
vendor:	juniper	model:	srx220	scope:	-	version:	-	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	10.4s14	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	11.2	Trust: 0.8
vendor:	juniper	model:	srx5600	scope:	-	version:	-	Trust: 0.8
vendor:	juniper	model:	srx110	scope:	-	version:	-	Trust: 0.8
vendor:	juniper	model:	srx240	scope:	-	version:	-	Trust: 0.8
vendor:	juniper	model:	srx1400	scope:	-	version:	-	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	12.1	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	11.4	Trust: 0.8
vendor:	juniper	model:	srx3600	scope:	-	version:	-	Trust: 0.8
vendor:	juniper	model:	srx650	scope:	eq	version:	0	Trust: 0.3
vendor:	juniper	model:	srx5800	scope:	eq	version:	0	Trust: 0.3
vendor:	juniper	model:	srx5600	scope:	eq	version:	0	Trust: 0.3
vendor:	juniper	model:	srx550	scope:	eq	version:	0	Trust: 0.3
vendor:	juniper	model:	srx3600	scope:	eq	version:	0	Trust: 0.3
vendor:	juniper	model:	srx3400	scope:	eq	version:	0	Trust: 0.3
vendor:	juniper	model:	srx240	scope:	eq	version:	0	Trust: 0.3
vendor:	juniper	model:	srx220	scope:	eq	version:	0	Trust: 0.3
vendor:	juniper	model:	srx210	scope:	eq	version:	0	Trust: 0.3
vendor:	juniper	model:	srx1400	scope:	eq	version:	0	Trust: 0.3
vendor:	juniper	model:	srx110	scope:	eq	version:	0	Trust: 0.3
vendor:	juniper	model:	srx100	scope:	eq	version:	0	Trust: 0.3
vendor:	juniper	model:	junos 12.1r6	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 11.4r7	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 11.4r6-s2	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 10.4s14	scope:	ne	version:	-	Trust: 0.3

sources: BID: 61122 // JVNDB: JVNDB-2013-003334 // CNNVD: CNNVD-201307-231 // NVD: CVE-2013-4687

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2013-4687
value:	HIGH
Trust: 1.0
NVD:	CVE-2013-4687
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201307-231
value:	HIGH
Trust: 0.6
VULHUB:	VHN-64689
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2013-4687
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-64689
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-64689 // JVNDB: JVNDB-2013-003334 // CNNVD: CNNVD-201307-231 // NVD: CVE-2013-4687

PROBLEMTYPE DATA

problemtype:

NVD-CWE-noinfo

Trust: 1.0

sources: NVD: CVE-2013-4687

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201307-231

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-201307-231

CONFIGURATIONS

sources: JVNDB: JVNDB-2013-003334

PATCH

title:

JSA10577

url:

http://kb.juniper.net/JSA10577

Trust: 0.8

sources: JVNDB: JVNDB-2013-003334

EXTERNAL IDS

db:	NVD	id:	CVE-2013-4687	Trust: 2.8
db:	JUNIPER	id:	JSA10577	Trust: 2.0
db:	BID	id:	61122	Trust: 1.4
db:	JVNDB	id:	JVNDB-2013-003334	Trust: 0.8
db:	CNNVD	id:	CNNVD-201307-231	Trust: 0.7
db:	VULHUB	id:	VHN-64689	Trust: 0.1

sources: VULHUB: VHN-64689 // BID: 61122 // JVNDB: JVNDB-2013-003334 // CNNVD: CNNVD-201307-231 // NVD: CVE-2013-4687

REFERENCES

url:	http://kb.juniper.net/jsa10577	Trust: 1.7
url:	http://www.securityfocus.com/bid/61122	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-4687	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-4687	Trust: 0.8
url:	http://kb.juniper.net/infocenter/index?page=content&id=jsa10577&actp=rss	Trust: 0.3
url:	http://www.juniper.net/	Trust: 0.3

sources: VULHUB: VHN-64689 // BID: 61122 // JVNDB: JVNDB-2013-003334 // CNNVD: CNNVD-201307-231 // NVD: CVE-2013-4687

CREDITS

The vendor reported these issues.

Trust: 0.3

sources: BID: 61122

SOURCES

db:	VULHUB	id:	VHN-64689
db:	BID	id:	61122
db:	JVNDB	id:	JVNDB-2013-003334
db:	CNNVD	id:	CNNVD-201307-231
db:	NVD	id:	CVE-2013-4687

LAST UPDATE DATE

2024-11-23T22:49:34.681000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-64689	date:	2013-08-22T00:00:00
db:	BID	id:	61122	date:	2013-07-11T00:00:00
db:	JVNDB	id:	JVNDB-2013-003334	date:	2013-07-16T00:00:00
db:	CNNVD	id:	CNNVD-201307-231	date:	2013-07-12T00:00:00
db:	NVD	id:	CVE-2013-4687	date:	2024-11-21T01:56:03.977

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-64689	date:	2013-07-11T00:00:00
db:	BID	id:	61122	date:	2013-07-11T00:00:00
db:	JVNDB	id:	JVNDB-2013-003334	date:	2013-07-16T00:00:00
db:	CNNVD	id:	CNNVD-201307-231	date:	2013-07-12T00:00:00
db:	NVD	id:	CVE-2013-4687	date:	2013-07-11T14:55:01.387