Summary
Denial of Service Vulnerability when Enhanced Web Filtering is enabled.
Impact
Repeated crashes of the flowd process can represent a sustained denial of service condition for SRX Series devices.
Solution
New builds of Junos OS software are available from Juniper. As a workaround disable Enhanced Web Filtering.
Insight
A certain type of URL can cause the flow daemon process to crash and restart when Enhanced Web Filtering is enabled.
Affected
Junos OS 10.4, 11.4 and 12.1
Detection
Check the OS build.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2014-2714 -
CVSS Base Score: 7.1
AV:N/AC:M/Au:N/C:N/I:N/A:C
Related Vulnerabilities