Juniper Web Device Manager - Cross-Site Scripting

Juniper Web Device Manager J-Web in Junos OS contains a cross-site scripting vulnerability. This can allow an unauthenticated attacker to run malicious scripts reflected off J-Web to the victim's browser in the context of their session within J-Web, which can allow the attacker to steal...

EUVD-2009-3467

Malware in sbrugna...

CVE-2009-3485

Cross-site scripting XSS vulnerability in the J-Web interface in Juniper JUNOS 8.5R1.14 and 9.0R1.1 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to the default URI...

The vulnerability of the J-Web interface in Juniper Networks Junos OS systems arises from the lack of authentication for critical functions and deficiencies in the error reporting mechanism. This allows attackers to gain access to confidential information.

The vulnerability of the J-Web interface in Juniper Networks Junos OS operating systems is related to the lack of authentication for critical functions and deficiencies in the error reporting mechanism. Exploiting this vulnerability can allow a malicious actor to gain access to confidential...

The vulnerability in the web interface of the Juniper Networks Junos OS operating system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability in the J-Web web interface of the Juniper Networks Junos OS system is related to improper input validation. Exploiting this vulnerability allows an attacker, operating remotely, to gain unauthorized access to protected information by adding an XPath command to the XPath stream...

The vulnerability in the J-Web web interface of Juniper Networks Junos OS, related to incorrect validation of input data, allows attackers to escalate their privileges.

The vulnerability in the J-Web web interface of Juniper Networks Junos OS is related to incorrect validation of input data. Exploiting this vulnerability can allow an attacker to increase their privileges remotely...