CVE-2013-6013

Buffer overflow in the flow daemon (flowd) in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R7-S2, 12.1.X44 before 12.1X44-D15, 12.1X45 before 12.1X45-D10 on SRX devices, when using telnet pass-through authentication on the firewall, might allow remote attackers to execute arbitrary code via a crafted telnet message.

Published: Oct 18, 2013
Updated: Apr 13, 2023
CVE: CVE-2013-6013
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
juniper / junos	-	10.4.x
juniper / junos	4.0	4.0.x
juniper / junos	4.1	4.1.x
juniper / junos	4.2	4.2.x
juniper / junos	4.3	4.3.x
juniper / junos	4.4	4.4.x
juniper / junos	5.0	5.0.x
juniper / junos	5.1	5.1.x
juniper / junos	5.2	5.2.x
juniper / junos	5.3	5.3.x
juniper / junos	5.4	5.4.x
juniper / junos	5.5	5.5.x
juniper / junos	5.6	5.6.x
juniper / junos	5.7	5.7.x
juniper / junos	6.0	6.0.x
juniper / junos	6.1	6.1.x
juniper / junos	6.2	6.2.x
juniper / junos	6.3	6.3.x
juniper / junos	6.4	6.4.x
juniper / junos	7.0	7.0.x
juniper / junos	7.1	7.1.x
juniper / junos	7.2	7.2.x
juniper / junos	7.3	7.3.x
juniper / junos	7.4	7.4.x
juniper / junos	7.5	7.5.x
juniper / junos	7.6	7.6.x
juniper / junos	8.0	8.0.x
juniper / junos	8.1	8.1.x
juniper / junos	8.2	8.2.x
juniper / junos	8.3	8.3.x
juniper / junos	8.4	8.4.x
juniper / junos	9.0	9.0.x
juniper / junos	9.1	9.1.x
juniper / junos	9.2	9.2.x
juniper / junos	9.4	9.4.x
juniper / junos	9.5	9.5.x
juniper / junos	9.6	9.6.x
juniper / junos	11.4	11.4.x
juniper / junos	12.1x44	12.1x44.x
juniper / junos	12.1x45	12.1x45.x

Vulnerability Database

289,697

CVE-2013-6013