Description
The Juniper SRX Series devices with Junos 11.4 before 11.4R12-S4, 12.1X44 before 12.1X44-D40, 12.1X45 before 12.1X45-D30, 12.1X46 before 12.1X46-D25, and 12.1X47 before 12.1X47-D10, when an Application Layer Gateway (ALG) is enabled, allows remote attackers to cause a denial of service (flowd crash) via a crafted packet.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10650
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031007
Scores
EPSS
0.0077
EPSS Percentile
73.7%
Details
CWE
CWE-20
Status
published
Products (18)
juniper/junos
11.4
juniper/junos
12.1
juniper/junos
12.1x44
juniper/junos
12.1x45
juniper/junos
12.1x46
juniper/junos
12.1x47
juniper/srx100
juniper/srx110
juniper/srx1400
juniper/srx210
... and 8 more
Published
Oct 14, 2014
Tracked Since
Feb 18, 2026