Juniper Networks ScreenOS 拒绝服务漏洞

BUGTRAQ ID: 64260 CVECAN ID: CVE-2013-6958 ScreenOS是Netscreen防火墙安全解决方案所使用的操作系统。 ScreenOS 5.4, 6.2.0, 6.3.0版本中禁用了"Ping of Death"屏幕后，处理特制报文的实现上存在安全漏洞，成功利用后可导致拒绝服务。 0 Juniper Networks ScreenOS 6.3 Juniper Networks ScreenOS 6.2 厂商补丁： Juniper Networks ---------------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

JVN#28436508: Juniper ScreenOS vulnerable to denial-of-service (DoS)

ScreenOS provided by Juniper Networks contains a denial-of-service DoS vulnerability. Impact When processing a malicious packet, the device may hang. Solution Enable the "Ping of Death Screen" Enable the "Ping of Death Screen" setting according to the information provided by the developer...

[360-FAAR v0.4.1] Firewall Analysis Audit And Repair

360-FAAR Firewall Analysis Audit and Repair is an offline, command line, Perl firewall policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in Checkpoint dbedit, Cisco ASA or ScreenOS commands, and its one file! Changes: This release...

[360-FAAR] Firewall Analysis Audit And Repair 0.3.6

360-FAAR Firewall Analysis Audit and Repair is an offline, command line, Perl firewall policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in Checkpoint dbedit, Cisco ASA or ScreenOS commands, and its one file! Read Policy and Logs...

Multiple Vendor Web Console Privilege Escalation Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of TippingPoint IPS and Juniper ScreenOS. Authentication is required to exploit this vulnerability. The specific flaw exists in the web-based administrative console of the affected devices. Unprivileged user...

Juniper Networks ScreenOS about.html页面信息泄露漏洞

BUGTRAQ ID: 34710 ScreenOS是Netscreen防火墙安全解决方案所使用的操作系统。 如果远程攻击者请求了ScreenOS的about.html文件，防火墙就会返回ScreenOS版本、补丁级别和功能集，这样无需任何认证便检索到了有关防火墙操作系统的信息。 Juniper Networks ScreenOS 6.2 Juniper Networks ScreenOS 6.1 Juniper Networks ScreenOS 5.4 Juniper Networks ---------------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载...

Juniper Advisory

PR09-05: ScreenOS remote information disclosure on Juniper Netscreen ScreenOS Firewalls Vulnerability found: 22nd March 2009 Vendor informed: 22nd March 2009 Severity: Low information disclosure Description: By simply requesting the about.html file, the firewall returns the version of ScreenOS an...

CVE-2008-6096

Cross-site scripting XSS vulnerability in Juniper NetScreen ScreenOS before 5.4r10, 6.0r6, and 6.1r2 allows remote attackers to inject arbitrary web script or HTML via the user name parameter to the 1 web interface login page or the 2 telnet login page...

Cross site scripting

Cross-site scripting XSS vulnerability in Juniper NetScreen ScreenOS before 5.4r10, 6.0r6, and 6.1r2 allows remote attackers to inject arbitrary web script or HTML via the user name parameter to the 1 web interface login page or the 2 telnet login page...

CVE-2008-6096

Cross-site scripting XSS vulnerability in Juniper NetScreen ScreenOS before 5.4r10, 6.0r6, and 6.1r2 allows remote attackers to inject arbitrary web script or HTML via the user name parameter to the 1 web interface login page or the 2 telnet login page...

CVE-2008-6096

Juniper ScreenOS prior to 5.4.0r10, 6.0.0r6, and 6.1.0r2 is vulnerable to cross-site scripting due to improper sanitization of user input on the web interface and telnet login pages. The issue allows an attacker to inject arbitrary script via the username field on login, potentially affecting use...

Juniper ScreenOS HTML注入漏洞

BUGTRAQ ID:31528 CNCAN ID：CNCAN-2008100307 Juniper ScreenOS是一款用于Juniper防火墙设备上的操作系统。 Juniper ScreenOS包含的WEB接口登录缺少充分的输入验证，远程攻击者可以利用漏洞进行跨站脚本攻击，获得敏感信息。 攻击者可以在登录过程中把JavaScript代码作为用户名部分数据，然后脚本代码会存储在设备事件记录中，当事件记录在NetScreen WEB控制台查看时可导致代码执行，成功的利用此漏洞可导致系统被入侵。 Juniper Networks ScreenOS 5.4 r9.0 升级到ScreenOS...

Juniper Netscreen Firewall ScreenOS crossite scripting

Persistant crossite scripting with username stored in logs...

CVE-2002-2266

CVE-2002-2266 affects NetScreen ScreenOS versions 2.8 through 4.0. The issue occurs when forwarding H.323 or Netmeeting traffic, where remote attackers can trigger a denial of service by establishing multiple half‑open H.323 sessions that are not cleaned up and do not time out for 36 hours, leadi...

CVE-2002-2266

NetScreen ScreenOS 2.8 through 4.0, when forwarding H.323 or Netmeeting traffic, allows remote attackers to cause a denial of service firewall session table consumption by establishing multiple half-open H.323 sessions, which are not cleaned up on garbage removal and do not time out for 36 hours...

CVE-2002-2234

NetScreen ScreenOS pre-4.0.1 is affected: remote attackers can bypass the Malicious-URL blocking feature by splitting the URL into fragmented IP requests. The available documents confirm the vulnerability and affected version, but do not provide remediation steps or exploit details.

CVE-2002-2234

NetScreen ScreenOS before 4.0.1 allows remote attackers to bypass the Malicious-URL blocking feature by splitting the URL into fragmented IP requests...

CVE-2005-2640

Behavioral discrepancy information leak in Juniper Netscreen VPN running ScreenOS 5.2.0 and earlier, when using IKE with pre-shared key authentication, allows remote attackers to enumerate valid usernames via an IKE Aggressive Mode packet, which generates a response if the username is valid but...

CVE-2005-2640

Behavioral discrepancy information leak in Juniper Netscreen VPN running ScreenOS 5.2.0 and earlier, when using IKE with pre-shared key authentication, allows remote attackers to enumerate valid usernames via an IKE Aggressive Mode packet, which generates a response if the username is valid but...

CVE-2005-2640

The CVE describes a behavioral discrepancy information leak in Juniper Netscreen VPNs running ScreenOS 5.2.0 and earlier. When using IKE with pre-shared key authentication, remote attackers can enumerate valid usernames by sending an IKE Aggressive Mode packet: a response is generated for valid u...