CVE-2014-6382

The Juniper MX Series routers with Junos 13.3R3 through 13.3Rx before 13.3R6, 14.1 before 14.1R4, 14.1X50 before 14.1X50-D70, and 14.2 before 14.2R2, when configured as a broadband edge (BBE) router, allows remote attackers to cause a denial of service (jpppd crash and restart) by sending a crafted PAP Authenticate-Request after the PPPoE Discovery and LCP phase are complete.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.1 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 63%
VendorProductVersion
juniperjunos
13.3:r3
juniperjunos
13.3:r4
juniperjunos
13.3:r5
juniperjunos
14.1
juniperjunos
14.1:r1
juniperjunos
14.1:r2
juniperjunos
14.1:r3
juniperjunos
14.2
juniperjunos
14.2:r1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/72070
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10665
http://www.securityfocus.com/bid/72070
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10665