CVE-2004-1766

2005-03-1005:00:00

mitre

www.cve.org

6.3 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

79.8%

JSON

The default installation of NetScreen-Security Manager before Feature Pack 1 does not enable encryption for communication with devices running ScreenOS 5.0, which allows remote attackers to obtain sensitive information via sniffing.

References

secunia.com/advisories/10675

www.juniper.net/support/security/alerts/58290.txt

www.kb.cert.org/vuls/id/927630

www.kb.cert.org/vuls/id/CRDY-5VEU8N

www.netscreen.com/services/security/alerts/1_19_04_58290.jsp

www.osvdb.org/3613

www.securityfocus.com/bid/9455

exchange.xforce.ibmcloud.com/vulnerabilities/14886