Details of VAR-201510-0582

ID

VAR-201510-0582

CVE

CVE-2014-6450

TITLE

Juniper Junos OS Service disruption in (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2014-008141

DESCRIPTION

Juniper Junos OS before 11.4R12-S4, 12.1X44 before 12.1X44-D41, 12.1X46 before 12.1X46-D26, 12.1X47 before 12.1X47-D11/D15, 12.2 before 12.2R9, 12.2X50 before 12.2X50-D70, 12.3 before 12.3R8, 12.3X48 before 12.3X48-D10, 12.3X50 before 12.3X50-D42, 13.1 before 13.1R4-S3, 13.1X49 before 13.1X49-D42, 13.1X50 before 13.1X50-D30, 13.2 before 13.2R6, 13.2X51 before 13.2X51-D26, 13.2X52 before 13.2X52-D15, 13.3 before 13.3R3-S3, 14.1 before 14.1R3, 14.2 before 14.2R1, 15.1 before 15.1R1, and 15.1X49 before 15.1X49-D10, when configured for IPv6, allow remote attackers to cause a denial of service (mbuf chain corruption and kernel panic) via crafted IPv6 packets. Juniper Junos OS is prone to a denial-of-service vulnerability. An attacker may exploit this issue to cause kernel panic, resulting in a a denial-of-service condition. Juniper Junos OS is a set of network operating system of Juniper Networks (Juniper Networks) dedicated to the company's hardware systems. The operating system provides a secure programming interface and Junos SDK. The following versions are affected: Juniper Networks Junos OS prior to 11.4R12-S4, 12.1X44 prior to 12.1X44-D41, 12.1X46 prior to 12.1X46-D26, 12.1X47 prior to 12.1X47-D11/D15, 12.2 prior to 12.2R9 , 12.2X50 version before 12.2X50-D70, 12.3 version before 12.3R8, 12.3X48 version before 12.3X48-D10, 12.3X50 version before 12.3X50-D42, 13.1 version before 13.1R4-S3, 13.1X49 version before 13.1X49-D42 , 13.1X50 version before 13.1X50-D30, 13.2 version before 13.2R6, 13.2X51 version before 13.2X51-D26, 13.2X52 version before 13.2X52-D15, 13.3 version before 13.3R3-S3, 14.1 version before 14.1R3, 14.2R1 Version 14.2 before, version 15.1 before 15.1R1, version 15.1X49 before 15.1X49-D10

Trust: 1.98

sources: NVD: CVE-2014-6450 // JVNDB: JVNDB-2014-008141 // BID: 77125 // VULHUB: VHN-74394

AFFECTED PRODUCTS

vendor:	juniper	model:	junos	scope:	eq	version:	13.1x49	Trust: 1.6
vendor:	juniper	model:	junos	scope:	eq	version:	12.1x47	Trust: 1.6
vendor:	juniper	model:	junos	scope:	eq	version:	13.1x50	Trust: 1.6
vendor:	juniper	model:	junos	scope:	eq	version:	13.2	Trust: 1.6
vendor:	juniper	model:	junos	scope:	eq	version:	15.1	Trust: 1.0
vendor:	juniper	model:	junos	scope:	eq	version:	15.1x49	Trust: 1.0
vendor:	juniper	model:	junos	scope:	eq	version:	13.2x52	Trust: 1.0
vendor:	juniper	model:	junos	scope:	eq	version:	12.1x46	Trust: 1.0
vendor:	juniper	model:	junos	scope:	eq	version:	13.1	Trust: 1.0
vendor:	juniper	model:	junos	scope:	eq	version:	12.1x44	Trust: 1.0
vendor:	juniper	model:	junos	scope:	eq	version:	14.1	Trust: 1.0
vendor:	juniper	model:	junos	scope:	eq	version:	14.2	Trust: 1.0
vendor:	juniper	model:	junos	scope:	eq	version:	12.2	Trust: 1.0
vendor:	juniper	model:	junos	scope:	eq	version:	12.2x65	Trust: 1.0
vendor:	juniper	model:	junos	scope:	eq	version:	12.3x48	Trust: 1.0
vendor:	juniper	model:	junos	scope:	eq	version:	12.3	Trust: 1.0
vendor:	juniper	model:	junos	scope:	eq	version:	13.3	Trust: 1.0
vendor:	juniper	model:	junos	scope:	eq	version:	12.3x50	Trust: 1.0
vendor:	juniper	model:	junos	scope:	eq	version:	13.2x51	Trust: 1.0
vendor:	juniper	model:	junos os	scope:	eq	version:	13.2x52-d15	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	12.2x50-d70	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	12.1x44	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	12.3x48	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	12.3r8	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	12.3x50-d42	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	13.1x49	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	13.2r6	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	13.1x50-d30	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	13.1r4-s3	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	12.3	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	12.3x50	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	12.1x44-d41	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	14.2	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	13.2x51-d26	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	13.3	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	13.2	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	15.1x49-d10	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	14.1	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	13.1x49-d42	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	12.1x46-d26	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	13.1	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	14.2r1	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	13.1x50	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	12.1x46	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	12.2	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	13.3r3-s3	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	13.2x52	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	12.1x47	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	15.1x49	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	15.1r1	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	12.2x50	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	14.1r3	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	13.2x51	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	lt	version:	15.1	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	12.1x47-d11/d15	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	12.3x48-d10	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	12.2r9	Trust: 0.8
vendor:	juniper	model:	junos os	scope:	eq	version:	15.1x49	Trust: 0.3
vendor:	juniper	model:	junos os	scope:	eq	version:	15.1	Trust: 0.3
vendor:	juniper	model:	junos os	scope:	eq	version:	14.2	Trust: 0.3
vendor:	juniper	model:	junos os 14.1r2-s2	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 14.1r2	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 14.1r1	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os	scope:	eq	version:	14.1	Trust: 0.3
vendor:	juniper	model:	junos os 13.3r3-s2	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 13.3r3	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 13.3r2-s3	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 13.3r1	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os	scope:	eq	version:	13.3	Trust: 0.3
vendor:	juniper	model:	junos os	scope:	eq	version:	13.2x52	Trust: 0.3
vendor:	juniper	model:	junos os 13.2x51-d25	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os	scope:	eq	version:	13.2x51	Trust: 0.3
vendor:	juniper	model:	junos os	scope:	eq	version:	13.2	Trust: 0.3
vendor:	juniper	model:	junos os	scope:	eq	version:	13.1x50	Trust: 0.3
vendor:	juniper	model:	junos os	scope:	eq	version:	13.1x49	Trust: 0.3
vendor:	juniper	model:	junos os 13.1r4-s2	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os	scope:	eq	version:	13.1	Trust: 0.3
vendor:	juniper	model:	junos os	scope:	eq	version:	12.3x50	Trust: 0.3
vendor:	juniper	model:	junos os	scope:	eq	version:	12.3x48	Trust: 0.3
vendor:	juniper	model:	junos os 12.3r7	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os	scope:	eq	version:	12.3	Trust: 0.3
vendor:	juniper	model:	junos os	scope:	eq	version:	12.2x50	Trust: 0.3
vendor:	juniper	model:	junos os	scope:	eq	version:	12.2	Trust: 0.3
vendor:	juniper	model:	junos os 12.1x47-d10	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os	scope:	eq	version:	12.1x47	Trust: 0.3
vendor:	juniper	model:	junos os 12.1x46-d25	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 12.1x46-d20	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os	scope:	eq	version:	12.1x46	Trust: 0.3
vendor:	juniper	model:	junos os 12.1x44-d40	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os	scope:	eq	version:	12.1x44	Trust: 0.3
vendor:	juniper	model:	junos os 11.4r12-s1	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 15.1x49-d10	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 15.1r1	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 14.2r1	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 14.1r3	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 13.3r4	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 13.3r3-s3	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 13.2x52-d15	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 13.2x51-d26	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 13.2r6	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 13.1x50-d30	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 13.1x49-d42	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 13.1r5	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 13.1r4-s3	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 12.3x50-d42	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 12.3x48-d10	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 12.3r8	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 12.2x50-d70	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 12.2r9	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 12.1x47-d15	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 12.1x47-d11	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 11.4r13	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos os 11.4r12-s4	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 12.1x46-d26	scope:	ne	version:	-	Trust: 0.3
vendor:	juniper	model:	junos 12.1x44-d41	scope:	ne	version:	-	Trust: 0.3

sources: BID: 77125 // JVNDB: JVNDB-2014-008141 // CNNVD: CNNVD-201510-293 // NVD: CVE-2014-6450

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2014-6450
value:	HIGH
Trust: 1.0
NVD:	CVE-2014-6450
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201510-293
value:	HIGH
Trust: 0.6
VULHUB:	VHN-74394
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2014-6450
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-74394
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-74394 // JVNDB: JVNDB-2014-008141 // CNNVD: CNNVD-201510-293 // NVD: CVE-2014-6450

PROBLEMTYPE DATA

problemtype:

CWE-119

Trust: 1.9

sources: VULHUB: VHN-74394 // JVNDB: JVNDB-2014-008141 // NVD: CVE-2014-6450

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201510-293

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-201510-293

CONFIGURATIONS

sources: JVNDB: JVNDB-2014-008141

PATCH

title:

JSA10699

url:

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10699&actp=search

Trust: 0.8

sources: JVNDB: JVNDB-2014-008141

EXTERNAL IDS

db:	NVD	id:	CVE-2014-6450	Trust: 2.8
db:	JUNIPER	id:	JSA10699	Trust: 2.0
db:	SECTRACK	id:	1033855	Trust: 1.1
db:	JVNDB	id:	JVNDB-2014-008141	Trust: 0.8
db:	CNNVD	id:	CNNVD-201510-293	Trust: 0.7
db:	BID	id:	77125	Trust: 0.4
db:	VULHUB	id:	VHN-74394	Trust: 0.1

sources: VULHUB: VHN-74394 // BID: 77125 // JVNDB: JVNDB-2014-008141 // CNNVD: CNNVD-201510-293 // NVD: CVE-2014-6450

REFERENCES

url:	http://kb.juniper.net/infocenter/index?page=content&id=jsa10699	Trust: 1.6
url:	http://www.securitytracker.com/id/1033855	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-6450	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-6450	Trust: 0.8
url:	http://www.juniper.net/	Trust: 0.3
url:	http://www.juniper.net/us/en/products-services/nos/junos/	Trust: 0.3
url:	http://kb.juniper.net/infocenter/index?page=content&id=jsa10699&actp=search	Trust: 0.3
url:	http://kb.juniper.net/infocenter/index?page=content&id=jsa10699	Trust: 0.1

sources: VULHUB: VHN-74394 // BID: 77125 // JVNDB: JVNDB-2014-008141 // CNNVD: CNNVD-201510-293 // NVD: CVE-2014-6450

CREDITS

The vendor reported this issue.

Trust: 0.3

sources: BID: 77125

SOURCES

db:	VULHUB	id:	VHN-74394
db:	BID	id:	77125
db:	JVNDB	id:	JVNDB-2014-008141
db:	CNNVD	id:	CNNVD-201510-293
db:	NVD	id:	CVE-2014-6450

LAST UPDATE DATE

2025-04-13T23:31:33.367000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-74394	date:	2016-12-08T00:00:00
db:	BID	id:	77125	date:	2015-10-16T00:00:00
db:	JVNDB	id:	JVNDB-2014-008141	date:	2015-10-20T00:00:00
db:	CNNVD	id:	CNNVD-201510-293	date:	2015-10-23T00:00:00
db:	NVD	id:	CVE-2014-6450	date:	2025-04-12T10:46:40.837

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-74394	date:	2015-10-16T00:00:00
db:	BID	id:	77125	date:	2015-10-16T00:00:00
db:	JVNDB	id:	JVNDB-2014-008141	date:	2015-10-20T00:00:00
db:	CNNVD	id:	CNNVD-201510-293	date:	2015-10-19T00:00:00
db:	NVD	id:	CVE-2014-6450	date:	2015-10-16T20:59:01.697