Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2018 Tenable Network Security, Inc.SCREENOS_JSA10624.NASL
HistoryMay 23, 2014 - 12:00 a.m.

Juniper ScreenOS 6.3 < 6.3.0r17 DoS

2014-05-2300:00:00
This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.
www.tenable.com
38

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.013

Percentile

85.7%

JSON

The remote host is running a version of Juniper ScreenOS 6.3 prior to 6.3.0r17. It is, therefore, affected by a denial of service vulnerability due to a failure to properly handle SSL/TLS protocol packets.

A remote, unauthenticated attacker could potentially exploit this vulnerability by sending malformed SSL/TLS packets to cause a firewall crash or failover. Repeated exploitation can result in an extended denial of service condition.

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(74149);
  script_version("1.5");
  script_cvs_date("Date: 2018/07/27 18:38:14");

  script_cve_id("CVE-2014-2842");
  script_bugtraq_id(66802);
  script_xref(name:"CERT", value:"480428");

  script_name(english:"Juniper ScreenOS 6.3 < 6.3.0r17 DoS");
  script_summary(english:"Checks version of ScreenOS.");

  script_set_attribute(attribute:"synopsis", value:"The remote host is affected by a denial of service vulnerability.");
  script_set_attribute(attribute:"description", value:
"The remote host is running a version of Juniper ScreenOS 6.3 prior to
6.3.0r17. It is, therefore, affected by a denial of service
vulnerability due to a failure to properly handle SSL/TLS protocol
packets.

A remote, unauthenticated attacker could potentially exploit this
vulnerability by sending malformed SSL/TLS packets to cause a firewall
crash or failover. Repeated exploitation can result in an extended
denial of service condition.");
  script_set_attribute(attribute:"see_also", value:"https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10624");
  script_set_attribute(attribute:"solution", value:"Upgrade to 6.3.0r17 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2014/04/15");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/05/23");

  script_set_attribute(attribute:"potential_vulnerability", value:"true");
  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:juniper:screenos");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Firewalls");

  script_copyright(english:"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.");

  script_dependencies("screenos_version.nbin");
  script_require_keys("Host/Juniper/ScreenOS/display_version", "Host/Juniper/ScreenOS/version", "Settings/ParanoidReport");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");

app_name = "Juniper ScreenOS";
display_version = get_kb_item_or_exit("Host/Juniper/ScreenOS/display_version");
version = get_kb_item_or_exit("Host/Juniper/ScreenOS/version");

# This is a paranoid check because patches may have been applied but
# we can't check for that.
if (report_paranoia < 2) audit(AUDIT_PARANOID);

display_fix = "6.3.0r17";
fix = str_replace(string:display_fix, find:'r', replace:'.');

# Only treat 6.3.x as affected.
if (version =~ "^6\.3\." && ver_compare(ver:version, fix:fix, strict:FALSE) == -1)
{
  port = 0;
  if (report_verbosity > 0)
  {
    report =
      '\n  Installed version : ' + display_version +
      '\n  Fixed version     : ' + display_fix +
      '\n';

    security_hole(extra:report, port:port);
  }
  else security_hole(port);
  exit(0);
}
else audit(AUDIT_INST_VER_NOT_VULN, app_name, display_version);
VendorProductVersionCPE
juniperscreenoscpe:/o:juniper:screenos

Related

prion 1
cvelist 1
nvd 1
seebug 1
cert 1
cve 1
prion
prion
Input validation
2014-04-15 14:55:00
cvelist
cvelist
CVE-2014-2842
2014-04-15 14:00:00
nvd
nvd
CVE-2014-2842
2014-04-15 14:55:05
seebug
seebug
NetScreen ScreenOS SSL/TLS协议报文处理拒绝服务漏洞
2014-04-16 00:00:00
cert
cert
Juniper ScreenOS is vulnerable to a denial of service from malformed SSL packets
2014-05-16 00:00:00
cve
cve
CVE-2014-2842
2014-04-15 14:55:05

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.013

Percentile

85.7%

JSON
Related for SCREENOS_JSA10624.NASL
prion1cvelist1nvd1seebug1cert1cve1