50 matches found
Juniper ScreenOS 6.3 < 6.3.0r17 DNS Lookup DoS
The remote host is running a version of Juniper ScreenOS 6.3 prior to 6.3.0r17. It is, therefore, affected by a denial of service vulnerability. A denial of service flaw exists in the built-in DNS lookup client. The flaw could allow a remote attacker to cause the device to crash or reboot, and...
Juniper ScreenOS 5.4 < 5.4.0r28 / 6.2 < 6.2.0r18 / 6.3 < 6.3.0r16 Malformed ICMP Echo Request DoS (JSA10604)
The remote host is running a version of Juniper ScreenOS prior to 5.4.0r28 / 6.2.0r18 / 6.3.0r16. It is, therefore, affected by a denial of service vulnerability due to a failure to properly handle ICMP echo request packets. A remote, unauthenticated attacker could potentially exploit this...
Juniper ScreenOS 5.4.x < 5.4.0r12 / 6.1.x / 6.2.x < 6.2.0r2 'about.html' Information Disclosure
The remote host is running a version of Juniper ScreenOS prior to 5.4.0r12 / 6.2.0r2. It is, therefore, affected by an information disclosure vulnerability due to system information being displayed in the 'about.html' page. A remote, unauthenticated attacker could leverage this information to aid...
Juniper ScreenOS 6.3 < 6.3.0r17 DoS
The remote host is running a version of Juniper ScreenOS 6.3 prior to 6.3.0r17. It is, therefore, affected by a denial of service vulnerability due to a failure to properly handle SSL/TLS protocol packets. A remote, unauthenticated attacker could potentially exploit this vulnerability by sending...
Juniper ScreenOS is vulnerable to a denial of service from malformed SSL packets
Overview Juniper ScreenOS 6.3, and possibly earlier versions, is vulnerable to a denial of service from malformed SSL packets. Description Juniper ScreenOS 6.3, and possibly earlier versions, is vulnerable to a denial of service from malformed SSL packets. Additional details may be found in Junip...
CVE-2014-2842
Juniper ScreenOS 6.3 and earlier allows remote attackers to cause a denial of service crash and restart or failover via a malformed SSL/TLS packet...
Input validation
Juniper ScreenOS 6.3 and earlier allows remote attackers to cause a denial of service crash and restart or failover via a malformed SSL/TLS packet...
CVE-2014-2842
Juniper ScreenOS 6.3 and earlier allows remote attackers to cause a denial of service crash and restart or failover via a malformed SSL/TLS packet...
Multiple Vendor Web Console Privilege Escalation Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of TippingPoint IPS and Juniper ScreenOS. Authentication is required to exploit this vulnerability. The specific flaw exists in the web-based administrative console of the affected devices. Unprivileged user...
Juniper ScreenOS HTML注入漏洞
BUGTRAQ ID:31528 CNCAN ID:CNCAN-2008100307 Juniper ScreenOS是一款用于Juniper防火墙设备上的操作系统。 Juniper ScreenOS包含的WEB接口登录缺少充分的输入验证,远程攻击者可以利用漏洞进行跨站脚本攻击,获得敏感信息。 攻击者可以在登录过程中把JavaScript代码作为用户名部分数据,然后脚本代码会存储在设备事件记录中,当事件记录在NetScreen WEB控制台查看时可导致代码执行,成功的利用此漏洞可导致系统被入侵。 Juniper Networks ScreenOS 5.4 r9.0 升级到ScreenOS...