Vulnerability Description
Juniper Junos OS 9.1 through 11.4 before 11.4R11, 12.1 before R10, 12.1X44 before D40, 12.1X46 before D30, 12.1X47 before D11 and 12.147-D15, 12.1X48 before D41 and D62, 12.2 before R8, 12.2X50 before D70, 12.3 before R6, 13.1 before R4-S2, 13.1X49 before D49, 13.1X50 before 30, 13.2 before R4, 13.2X50 before D20, 13.2X51 before D25, 13.2X52 before D15, 13.3 before R2, and 14.1 before R1, when supporting 4-byte AS numbers and a BGP peer does not, allows remote attackers to cause a denial of service (memory corruption and RDP routing process crash and restart) via crafted transitive attributes in a BGP UPDATE.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Juniper | Junos | 9.1 |
Related Weaknesses (CWE)
References
- http://www.securitytracker.com/id/1031009
- https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10653Vendor Advisory
- http://www.securitytracker.com/id/1031009
- https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10653Vendor Advisory
FAQ
What is CVE-2014-3818?
CVE-2014-3818 is a vulnerability with a CVSS score of 7.8 (HIGH). Juniper Junos OS 9.1 through 11.4 before 11.4R11, 12.1 before R10, 12.1X44 before D40, 12.1X46 before D30, 12.1X47 before D11 and 12.147-D15, 12.1X48 before D41 and D62, 12.2 before R8, 12.2X50 before...
How severe is CVE-2014-3818?
CVE-2014-3818 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-3818?
Check the references section above for vendor advisories and patch information. Affected products include: Juniper Junos.