2 matches found
Juniper Junos Corrupt pam.conf Security Bypass (JSA10707)
According to its self-reported version number, the remote Juniper Junos device is affected by a security bypass vulnerability due to the 'fail-open' behavior of the pam.conf file. A local attacker can exploit this, by modifying or corrupting the pam.conf file, to gain unauthenticated root access ...
CVE-2015-7751
CVE-2015-7751 affects Juniper Junos OS prior to listed build revisions (various 12.x–15.x) where pam.conf corruption enables local users to gain root privileges. The connected docs confirm the root-privilege bypass is triggered by a corrupted pam.conf file, allowing unauthenticated or local privi...