CVE-2014-2714
Description
The Enhanced Web Filtering (EWF) in Juniper Junos before 10.4R15, 11.4 before 11.4R9, 12.1 before 12.1R7, 12.1X44 before 12.1X44-D20, 12.1X45 before 12.1X45-D10, and 12.1X46 before 12.1X46-D10, as used in the SRX Series services gateways, allows remote attackers to cause a denial of service (flow daemon crash and restart) via a crafted URL.
Predictions
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No mitigations published for this CVE yet.
The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or โ if you've already worked around this in production โ publish your fix to the community-verified tier.
โ Propose a mitigation on Community โ Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here withsource_tier=community-verified.
References
- http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10622
- http://secunia.com/advisories/57835
- http://securitytracker.com/id?1030060
- http://www.securityfocus.com/bid/66760
- http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10622
- http://secunia.com/advisories/57835
- http://securitytracker.com/id?1030060
- http://www.securityfocus.com/bid/66760
CWEs
CWE-20
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.