What is the severity of CVE-2013-6013?

CVE-2013-6013 is considered a high-severity vulnerability due to the potential for remote code execution.

How do I fix CVE-2013-6013?

To fix CVE-2013-6013, you should upgrade your Junos software to a version that includes the security patch, specifically to versions 10.4S14, 11.4R7-S2, 12.1X44-D15, or 12.1X45-D10 or later.

What systems are affected by CVE-2013-6013?

CVE-2013-6013 affects Juniper Junos versions prior to 10.4S14, 11.4R7-S2, 12.1X44-D15, and 12.1X45-D10 on SRX devices when using telnet pass-through authentication.

What types of attacks can exploit CVE-2013-6013?

CVE-2013-6013 can be exploited by remote attackers exploiting the buffer overflow vulnerability to execute arbitrary code.

Is CVE-2013-6013 a client-side or server-side vulnerability?

CVE-2013-6013 is considered a server-side vulnerability since it affects the flow daemon on affected Juniper SRX devices.

Vulnerability/
CVE-2013-6013

medium

6.8

CWE

119

17/10/2013

6/8/2024

CVE-2013-6013: Buffer Overflow

First published: Thu Oct 17 2013(Updated: )

Buffer overflow in the flow daemon (flowd) in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R7-S2, 12.1.X44 before 12.1X44-D15, 12.1X45 before 12.1X45-D10 on SRX devices, when using telnet pass-through authentication on the firewall, might allow remote attackers to execute arbitrary code via a crafted telnet message.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Juniper JUNOS	<=10.4
Juniper JUNOS	=4.0
Juniper JUNOS	=4.1
Juniper JUNOS	=4.2
Juniper JUNOS	=4.3
Juniper JUNOS	=4.4
Juniper JUNOS	=5.0
Juniper JUNOS	=5.1
Juniper JUNOS	=5.2
Juniper JUNOS	=5.3
Juniper JUNOS	=5.4
Juniper JUNOS	=5.5
Juniper JUNOS	=5.6
Juniper JUNOS	=5.7
Juniper JUNOS	=6.0
Juniper JUNOS	=6.1
Juniper JUNOS	=6.2
Juniper JUNOS	=6.3
Juniper JUNOS	=6.4
Juniper JUNOS	=7.0
Juniper JUNOS	=7.1
Juniper JUNOS	=7.2
Juniper JUNOS	=7.3
Juniper JUNOS	=7.4
Juniper JUNOS	=7.5
Juniper JUNOS	=7.6
Juniper JUNOS	=8.0
Juniper JUNOS	=8.1
Juniper JUNOS	=8.2
Juniper JUNOS	=8.3
Juniper JUNOS	=8.4
Juniper JUNOS	=9.0
Juniper JUNOS	=9.1
Juniper JUNOS	=9.2
Juniper JUNOS	=9.4
Juniper JUNOS	=9.5
Juniper JUNOS	=9.6
Juniper JUNOS	=11.4
Juniper JUNOS	=12.1x44
Juniper JUNOS	=12.1x45
Juniper SRX100
Juniper SRX110
Juniper SRX1400
Juniper SRX210
Juniper SRX220
Juniper SRX240
Juniper SRX3400
Juniper SRX3600
Juniper SRX550
juniper srx5600
Juniper SRX5800
Juniper SRX650

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-6013?
CVE-2013-6013 is considered a high-severity vulnerability due to the potential for remote code execution.
How do I fix CVE-2013-6013?
To fix CVE-2013-6013, you should upgrade your Junos software to a version that includes the security patch, specifically to versions 10.4S14, 11.4R7-S2, 12.1X44-D15, or 12.1X45-D10 or later.
What systems are affected by CVE-2013-6013?
CVE-2013-6013 affects Juniper Junos versions prior to 10.4S14, 11.4R7-S2, 12.1X44-D15, and 12.1X45-D10 on SRX devices when using telnet pass-through authentication.
What types of attacks can exploit CVE-2013-6013?
CVE-2013-6013 can be exploited by remote attackers exploiting the buffer overflow vulnerability to execute arbitrary code.
Is CVE-2013-6013 a client-side or server-side vulnerability?
CVE-2013-6013 is considered a server-side vulnerability since it affects the flow daemon on affected Juniper SRX devices.

agent/softwarecombine
agent/type
agent/references
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/severity
agent/first-publish-date
agent/description
agent/author
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
agent/weakness
vendor/juniper
canonical/juniper junos
version/juniper junos/10.4
version/juniper junos/4.0
version/juniper junos/4.1
version/juniper junos/4.2
version/juniper junos/4.3
version/juniper junos/4.4
version/juniper junos/5.0
version/juniper junos/5.1
version/juniper junos/5.2
version/juniper junos/5.3
version/juniper junos/5.4
version/juniper junos/5.5
version/juniper junos/5.6
version/juniper junos/5.7
version/juniper junos/6.0
version/juniper junos/6.1
version/juniper junos/6.2
version/juniper junos/6.3
version/juniper junos/6.4
version/juniper junos/7.0
version/juniper junos/7.1
version/juniper junos/7.2
version/juniper junos/7.3
version/juniper junos/7.4
version/juniper junos/7.5
version/juniper junos/7.6
version/juniper junos/8.0
version/juniper junos/8.1
version/juniper junos/8.2
version/juniper junos/8.3
version/juniper junos/8.4
version/juniper junos/9.0
version/juniper junos/9.1
version/juniper junos/9.2
version/juniper junos/9.4
version/juniper junos/9.5
version/juniper junos/9.6
version/juniper junos/11.4
version/juniper junos/12.1x44
version/juniper junos/12.1x45
canonical/juniper srx100
canonical/juniper srx110
canonical/juniper srx1400
canonical/juniper srx210
canonical/juniper srx220
canonical/juniper srx240
canonical/juniper srx3400
canonical/juniper srx3600
canonical/juniper srx550
canonical/juniper srx5600
canonical/juniper srx5800
canonical/juniper srx650

Frequently Asked Questions

What is the severity of CVE-2013-6013?
CVE-2013-6013 is considered a high-severity vulnerability due to the potential for remote code execution.
How do I fix CVE-2013-6013?
To fix CVE-2013-6013, you should upgrade your Junos software to a version that includes the security patch, specifically to versions 10.4S14, 11.4R7-S2, 12.1X44-D15, or 12.1X45-D10 or later.
What systems are affected by CVE-2013-6013?
CVE-2013-6013 affects Juniper Junos versions prior to 10.4S14, 11.4R7-S2, 12.1X44-D15, and 12.1X45-D10 on SRX devices when using telnet pass-through authentication.
What types of attacks can exploit CVE-2013-6013?
CVE-2013-6013 can be exploited by remote attackers exploiting the buffer overflow vulnerability to execute arbitrary code.
Is CVE-2013-6013 a client-side or server-side vulnerability?
CVE-2013-6013 is considered a server-side vulnerability since it affects the flow daemon on affected Juniper SRX devices.

CVE-2013-6013: Buffer Overflow

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-6013?

How do I fix CVE-2013-6013?

What systems are affected by CVE-2013-6013?

What types of attacks can exploit CVE-2013-6013?

Is CVE-2013-6013 a client-side or server-side vulnerability?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2013-6013?

How do I fix CVE-2013-6013?

What systems are affected by CVE-2013-6013?

What types of attacks can exploit CVE-2013-6013?

Is CVE-2013-6013 a client-side or server-side vulnerability?