Juniper Junos 10.4S before 10.4S15, 10.4R before 10.4R16, 11.4 before 11.4R9, and 12.1R before 12.1R7 on SRX Series service gateways allows remote attackers to cause a denial of service (flowd crash) via a crafted IP packet.

References

• https://nvd.nist.gov/vuln/detail/CVE-2014-0617
• http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10610
• http://osvdb.org/101863
• http://www.securityfocus.com/bid/64764
• http://www.securitytracker.com/id/1029583