Summary
Junos OS is prone to a SSL_MODE_RELEASE_BUFFERS NULL pointer derefence vulnerability in OpenSSL.
Impact
An attacker exploiting this vulnerability can cause a denial of service conidition.
Solution
New builds of Junos OS software are available from Juniper.
Insight
A flaw in the do_ssl3_write function can allow remote attackers to cause a denial of service via a NULL pointer dereference.
Affected
Junos OS 11.4, 12.1, 12.2, 12.3, 13.1, 13.2 and 13.3
Detection
Check the OS build.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2014-0198 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P
Related Vulnerabilities