4 matches found
Juniper Networks IVE ActiveX Control Buffer Overflow (CVE-2006-2086)
A buffer overflow vulnerability has been reported in Juniper Networks IVE. The vulnerability is due to a boundary error within an ActiveX control. A remote attacker may exploit this vulnerability by enticing an affected user to open a specially crafted web-page. Successful exploitation would allo...
Cross site scripting
Cross-site scripting XSS vulnerability in dana/nc/ncrun.cgi in Juniper Networks IVE 6.5R1 Build 14599 and 6.5R2 Build 14951 allows remote attackers to inject arbitrary web script or HTML via the DSSignInURL cookie...
PR09-17: Juniper Secure Access seriers (Juniper IVE) authenticated XSS & REDIRECTION
PR09-17: Juniper Secure Access series Juniper IVE authenticated XSS & REDIRECTION http://www.procheckup.com/vulnerabilitymanager/vulnerabilities/pr09-17 Vulnerability found: 12th October 2009 Vendor informed: 12 October 2009 Severity: Medium Script injection Description: There are multiple...
Juniper Networks IVE OS LDAP Referrals TLS明文密码漏洞
Juniper IVE OS是一款即时虚拟外网技术,用于安全访问SSL VPN设备。 使用TLS的Juniper IVE OS存在密码泄露问题,远程攻击者可以利用漏洞获得明文密码信息对系统进行进一步攻击。 攻击者可以通过嗅探网络通信获得用户敏感信息。目前没有详细漏洞细节提供。 Juniper Networks IVE OS 6.0 Juniper Networks IVE OS 5.4 目前没有详细解决方案提供: http://www.juniper.net...