CVE-2014-9708
5.0
Vector
AV:N/AC:L/Au:N/C:N/I:N/A:P
Exploitability: 10.0 / Impact: 2.9
Source: NVD
Description
Embedthis Appweb before 4.6.6 and 5.x before 5.2.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via a Range header with an empty value, as demonstrated by "Range: x=,".
Affected (302)
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.0.0 |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Version 12.1x46 |
| Running on/with | Platform Versions |
|---|---|
Juniper Srx100 | All versions |
Juniper Srx110 | All versions |
Juniper Srx1400 | All versions |
Juniper Srx1500 | All versions |
Juniper Srx210 | All versions |
Juniper Srx220 | All versions |
Juniper Srx240 | All versions |
Juniper Srx240h2 | All versions |
Juniper Srx240m | All versions |
Juniper Srx300 | All versions |
Juniper Srx320 | All versions |
Juniper Srx340 | All versions |
Juniper Srx3400 | All versions |
Juniper Srx345 | All versions |
Juniper Srx3600 | All versions |
Juniper Srx380 | All versions |
Juniper Srx4000 | All versions |
Juniper Srx4100 | All versions |
Juniper Srx4200 | All versions |
Juniper Srx4600 | All versions |
Juniper Srx5000 | All versions |
Juniper Srx5400 | All versions |
Juniper Srx550 | All versions |
Juniper Srx550 Hm | All versions |
Juniper Srx550m | All versions |
Juniper Srx5600 | All versions |
Juniper Srx5800 | All versions |
Juniper Srx650 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Version 12.3 |
| Running on/with | Platform Versions |
|---|---|
Juniper Ex2200 | All versions |
Juniper Ex2200 C | All versions |
Juniper Ex2200 Vc | All versions |
Juniper Ex2300 24mp | All versions |
Juniper Ex2300 24p | All versions |
Juniper Ex2300 24t | All versions |
Juniper Ex2300 48mp | All versions |
Juniper Ex2300 48p | All versions |
Juniper Ex2300 48t | All versions |
Juniper Ex2300 C | All versions |
Juniper Ex2300m | All versions |
Juniper Ex3200 | All versions |
Juniper Ex3300 | All versions |
Juniper Ex3300 Vc | All versions |
Juniper Ex4200 | All versions |
Juniper Ex4200 Vc | All versions |
Juniper Ex4300 | All versions |
Juniper Ex4300 24p | All versions |
Juniper Ex4300 24p S | All versions |
Juniper Ex4300 24t | All versions |
Juniper Ex4300 24t S | All versions |
Juniper Ex4300 32f | All versions |
Juniper Ex4300 32f Dc | All versions |
Juniper Ex4300 32f S | All versions |
Juniper Ex4300 48mp | All versions |
Juniper Ex4300 48mp S | All versions |
Juniper Ex4300 48p | All versions |
Juniper Ex4300 48p S | All versions |
Juniper Ex4300 48t | All versions |
Juniper Ex4300 48t Afi | All versions |
Juniper Ex4300 48t Dc | All versions |
Juniper Ex4300 48t Dc Afi | All versions |
Juniper Ex4300 48t S | All versions |
Juniper Ex4300 48tafi | All versions |
Juniper Ex4300 48tdc | All versions |
Juniper Ex4300 48tdc Afi | All versions |
Juniper Ex4300 Mp | All versions |
Juniper Ex4300 Vc | All versions |
Juniper Ex4300m | All versions |
Juniper Ex4400 | All versions |
Juniper Ex4500 | All versions |
Juniper Ex4500 Vc | All versions |
Juniper Ex4550 | All versions |
Juniper Ex4550 Vc | All versions |
Juniper Ex4550/vc | All versions |
Juniper Ex4600 | All versions |
Juniper Ex4600 Vc | All versions |
Juniper Ex4650 | All versions |
Juniper Ex6200 | All versions |
Juniper Ex6210 | All versions |
Juniper Ex8200 | All versions |
Juniper Ex8200 Vc | All versions |
Juniper Ex8208 | All versions |
Juniper Ex8216 | All versions |
Juniper Ex9200 | All versions |
Juniper Ex9204 | All versions |
Juniper Ex9208 | All versions |
Juniper Ex9214 | All versions |
Juniper Ex9250 | All versions |
Juniper Ex9251 | All versions |
Juniper Ex9253 | All versions |
Configuration E
| Running on/with | Platform Versions |
|---|---|
Juniper Mx | All versions |
Juniper Mx10 | All versions |
Juniper Mx10000 | All versions |
Juniper Mx10003 | All versions |
Juniper Mx10008 | All versions |
Juniper Mx10016 | All versions |
Juniper Mx104 | All versions |
Juniper Mx150 | All versions |
Juniper Mx2008 | All versions |
Juniper Mx2010 | All versions |
Juniper Mx2020 | All versions |
Juniper Mx204 | All versions |
Juniper Mx240 | All versions |
Juniper Mx40 | All versions |
Juniper Mx480 | All versions |
Juniper Mx5 | All versions |
Juniper Mx80 | All versions |
Juniper Mx960 | All versions |
Juniper Ptx1000 | All versions |
Juniper Ptx1000 72q | All versions |
Juniper Ptx10000 | All versions |
Juniper Ptx10001 | All versions |
Juniper Ptx10001 36mr | All versions |
Juniper Ptx100016 | All versions |
Juniper Ptx10002 | All versions |
Juniper Ptx10002 60c | All versions |
Juniper Ptx10003 | All versions |
Juniper Ptx10003 160c | All versions |
Juniper Ptx10003 80c | All versions |
Juniper Ptx10003 81cd | All versions |
Juniper Ptx10004 | All versions |
Juniper Ptx10008 | All versions |
Juniper Ptx10016 | All versions |
Juniper Ptx3000 | All versions |
Juniper Ptx5000 | All versions |
Juniper T1600 | All versions |
Juniper T320 | All versions |
Juniper T4000 | All versions |
Juniper T640 | All versions |
Configuration F
Related CWEs
References (28)
Source: cve@mitre.org
ExploitThird Party AdvisoryVDB Entry
Source: cve@mitre.org
Mailing ListThird Party AdvisoryVDB Entry
Source: cve@mitre.org
ExploitMailing ListThird Party AdvisoryVDB Entry
Source: cve@mitre.org
PatchThird Party Advisory
Source: cve@mitre.org
Broken LinkThird Party AdvisoryVDB Entry
Source: cve@mitre.org
Broken LinkThird Party AdvisoryVDB Entry
Source: cve@mitre.org
Broken LinkThird Party AdvisoryVDB Entry
Source: cve@mitre.org
Broken LinkPatch
Source: cve@mitre.org
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitMailing ListThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListPatch
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListPatch
Source: af854a3a-2127-422b-91ae-364da2661108
PatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkPatch
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkExploitIssue Tracking
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Timeline
No history available yet.