CVE-2014-0616

15.01.2014, 16:08

Juniper Junos 10.4 before 10.4R16, 11.4 before 11.4R10, 12.1R before 12.1R8-S2, 12.1X44 before 12.1X44-D30, 12.1X45 before 12.1X45-D20, 12.1X46 before 12.1X46-D10, 12.2 before 12.2R7, 12.3 before 12.3R4-S2, 13.1 before 13.1R3-S1, 13.2 before 13.2R2, and 13.3 before 13.3R1 allows remote attackers to cause a denial of service (rdp crash) via a large BGP UPDATE message which immediately triggers a withdraw message to be sent, as demonstrated by a long AS_PATH and a large number of BGP Communities.

Race Condition

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Vector
NIST	NIST	7.1 UNKNOWN	NETWORK	MEDIUM	AV:N/AC:M/Au:N/C:N/I:N/A:C
mitre	CNA	---			---
CVE	ADP	---			---

Base Score

CVSS 3.x

EPSS Score

Percentile: 68%

Vendor	Product	Version
juniper	junos	10.4
juniper	junos	11.4
juniper	junos	12.1r:r
juniper	junos	12.1x44:x44
juniper	junos	12.1x45:x45
juniper	junos	12.1x46:x46
juniper	junos	12.2
juniper	junos	12.3
juniper	junos	13.1
juniper	junos	13.2
juniper	junos	13.3

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
The program contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently.

References

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10609

http://osvdb.org/101868

http://www.securityfocus.com/bid/64766

http://www.securitytracker.com/id/1029582

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10609

http://osvdb.org/101868

http://www.securityfocus.com/bid/64766

http://www.securitytracker.com/id/1029582