CVE-2004-1766

The CVE refers to NetScreen-Security Manager prior to Feature Pack 1 communicating with devices using ScreenOS 5.0 without encryption, allowing remote attackers to obtain sensitive information via sniffing. The available documents state the vulnerability and its impact (information disclosure) bu...

CVE-2004-1766

The default installation of NetScreen-Security Manager before Feature Pack 1 does not enable encryption for communication with devices running ScreenOS 5.0, which allows remote attackers to obtain sensitive information via sniffing...

CVE-2004-1446

Unknown vulnerability in ScreenOS in Juniper Networks NetScreen firewall 3.x through 5.x allows remote attackers to cause a denial of service device reboot or hang via a crafted SSH v1 packet...

CVE-2004-1446

Unknown vulnerability in ScreenOS in Juniper Networks NetScreen firewall 3.x through 5.x allows remote attackers to cause a denial of service device reboot or hang via a crafted SSH v1 packet...

CVE-2002-1547

Technical details for CVE-2002-1547 are not provided in the connected documents. The supplied data is limited to the initial description. Monitor for updates in case concrete details (affected products, impact, remediation) are published.

CVE-2002-1547

Netscreen running ScreenOS 4.0.0r6 and earlier allows remote attackers to cause a denial of service via a malformed SSH packet to the Secure Command Shell SCS management interface, as demonstrated via certain CRC32 exploits, a different vulnerability than CVE-2001-0144...

NetScreen Security Advisory 57739

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Title: NetScreen Advisory 57739 Date: 30 July 2003 Impact: Potential Denial of Service of Security Device Affected Products: NetScreen Firewall/VPN products running ScreenOS 4.0.1r1 through 4.0.1r6 and 4.0.3r1 and 4.0.3r2 Unaffected Products: NetScree...

NetScreen ScreenOS 4.0.1/4.0.3 - TCP Window Size Remote Denial of Service

source: https://www.securityfocus.com/bid/8302/info NetScreen ScreenOS has been reported prone to a vulnerability that may allow a remote user to trigger a denial of service condition in an affected appliance. It has been reported that by modifying system configuration values that control the TCP...

NetScreen ScreenOS 4.0.14.0.3 - TCP Window Size Remote Denial of Service

NetScreen ScreenOS 4.0.14.0.3 - TCP Window Size Remote Denial of Service source: https://www.securityfocus.com/bid/8302/info NetScreen ScreenOS has been reported prone to a vulnerability that may allow a remote user to trigger a denial of service condition in an affected appliance. It has been...

CVE-2002-0891

The CVE-2002-0891 issue affects NetScreen ScreenOS WebUI (pre-2.6.1r8 and certain 2.8.x/3.0.x builds before 3.0.3r1). The vulnerability allows remote attackers to trigger a denial-of-service (crash) by sending a long user name to the WebUI. Impact is limited to availability (PARTIAL) as per the N...

CVE-2002-0891

The web interface WebUI of NetScreen ScreenOS before 2.6.1r8, and certain 2.8.x and 3.0.x versions before 3.0.3r1, allows remote attackers to cause a denial of service crash via a long user name...

CVE-2002-1547

Netscreen running ScreenOS 4.0.0r6 and earlier allows remote attackers to cause a denial of service via a malformed SSH packet to the Secure Command Shell SCS management interface, as demonstrated via certain CRC32 exploits, a different vulnerability than CVE-2001-0144...

CVE-2002-2266

NetScreen ScreenOS 2.8 through 4.0, when forwarding H.323 or Netmeeting traffic, allows remote attackers to cause a denial of service firewall session table consumption by establishing multiple half-open H.323 sessions, which are not cleaned up on garbage removal and do not time out for 36 hours...

CVE-2002-2234

NetScreen ScreenOS before 4.0.1 allows remote attackers to bypass the Malicious-URL blocking feature by splitting the URL into fragmented IP requests...

Potential H.323 Denial of Service

Title: NetScreen Security Alert 52020 Date: 25 November 2002 Description: Potential H.323 Denial of Service Impact: Complete Denial of Service Affected Products: All firewall/VPN appliances and systems Affected Software Releases: ScreenOS 2.8, 3.0, 3.1, 4.0 Summary: A vulnerability has been...

'Malicious-URL' Feature may be Circumvented Using IP Fragmentation

Title: NetScreen Security Alert 51929 Date: 25 November 2002 Impact: 'Malicious-URL' Feature may be Circumvented Using IP Fragmentation Affected Products: All firewall/VPN appliances and systems Affected Software Releases: ScreenOS 2.7.1, 2.8, 3.0, 3.1, 4.0 Max Risk: Low Summary: In response to t...

CVE-2002-0891

The web interface WebUI of NetScreen ScreenOS before 2.6.1r8, and certain 2.8.x and 3.0.x versions before 3.0.3r1, allows remote attackers to cause a denial of service crash via a long user name...

Netscreen 25 unauthorised reboot issue

Please note that this advisory was prepared, before speaking to Netscreen's US operation. Nothing of this vulnerability has been discussed here or on vun-dev hence this email. Additionally it is not shown on netscreen's security alerts page http://www.netscreen.com/support/alert.html as of...

CVE-2002-0234

NetScreen ScreenOS before 2.6.1 does not support a maximum number of concurrent sessions for a system, which allows an attacker on the trusted network to cause a denial of service resource exhaustion via a port scan to an external network, which consumes all available connections...

CVE-2002-0234

CVE-2002-0234 affects NetScreen ScreenOS prior to 2.6.1. The issue is a lack of a maximum concurrent-session limit, allowing a trusted-network attacker to perform a port scan to an external network that exhausts connections and causes denial of service. The provided documents describe the vulnera...