EUVD-2014-3424

Malware in sbrugna...

Juniper NSM < 2012.2R14 OpenSSL Multiple Vulnerabilities (JSA10851)

The remote host is running a version of NSM Network and Security Manager Server that is prior to 2012.2R14. It is, therefore, affected by multiple vulnerabilities in the bundled version of OpenSSL. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...

Juniper NSM < 2012.2R9 Apache HTTP Server Multiple Vulnerabilities (JSA10685) (credentialed check)

The remote host is running a version of NSM Network and Security Manager Server that is prior to 2012.2R9. It is, therefore, affected by multiple vulnerabilities in the bundled version of Apache HTTP Server : - A flaw exists due to improper escaping of filenames in 406 and 300 HTTP responses. A...

Juniper NSM < 2012.2R9 Multiple Java and Apache Vulnerabilities (JSA10642)

The remote host has one or more instances of NSM Network and Security Manager Server running, with versions prior to 2012.2R9. It is, therefore, affected by multiple vulnerabilities related to its Java and Apache installations. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

Juniper NSM Remote Code Execution (JSA10625)

The remote host has one or more instances of NSM Network and Security Manager Server running, with versions prior to 2012.2R8. It is, therefore, affected by a remote code execution vulnerability in the NSM XDB service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

CVE-2014-3411

Unspecified vulnerability in the NSM XDB service in Juniper NSM before 2012.2R8 allows remote attackers to execute arbitrary code via unspecified vectors...

Code injection

Unspecified vulnerability in the NSM XDB service in Juniper NSM before 2012.2R8 allows remote attackers to execute arbitrary code via unspecified vectors...

Juniper NSM Servers < 2012.2R5 Multiple Vulnerabilities

According to the version of one or more Juniper NSM servers running on the remote host, it is potentially affected by the following vulnerabilities related to the included Apache Tomcat version : - An error exists related to handling requests containing several parameters that could allow denial ...

Juniper NSM Linux Kernel TCP Sequence Number Generation Issue (PSN-2012-08-688)

According to the version of one or more Juniper NSM servers running on the remote host, it is potentially vulnerable to denial of service and network session hijacking attacks due to a weak IP sequence number generator. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

Juniper NSM Servers Multiple Java JDK/JRE Vulnerabilities (PSN-2012-08-689)

According to the version of one or more Juniper NSM servers running on the remote host, it is potentially affected by multiple vulnerabilities affecting the Java software running on the host. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc...

Juniper NSM Web Proxy SOAP Interface Detection

The remote host is running the Juniper NSM Web Proxy SOAP API, which allows 3rd party applications access to NSM servers. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid69876; scriptversion"$Revision: 1.2 $"; scriptcvsdate"$Date: 2017/05/16 19:43:12 $";...

Juniper NSM GUI Server Detection

The remote host is running the Juniper NSM GUI Server. The NSM GUI accepts connections from users using the NSM GUI Client, which allows for administration of the NSM servers. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid69870; scriptversion"1.9";...

Juniper NSM Servers < 2012.1 Multiple Vulnerabilities

According to the version of one or more Juniper NSM servers running on the remote host, it is potentially vulnerable to multiple vulnerabilities, the worst of which may allow an authenticated user to trigger a denial of service condition or execute arbitrary code. %NASLMINLEVEL 70300 C Tenable...

Juniper NSM Web Proxy Detection

The remote host is running the Juniper NSM Web Proxy, which is used for hosting NSM GUI client software and web-based APIs. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid69875; scriptversion"1.4"; scriptcvsdate"Date: 2019/11/22"; scriptnameenglish:"Juniper NSM Web...

OS Identification : Linux Distribution

This plugin attempts to identify the operating system type and version by looking at certain files on the remote operating system e.g., '/etc/redhat-release' on Red Hat. %NASLMINLEVEL 70300 C Tenable, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid25335;...

Juniper NetScreen-Security Manager Remote DoS flaw

The version of Juniper NetScreen-Security Manager NSM installed on the remote host may allow an attacker to deny service to legitimate users using specially-crafted long strings to the guiSrv and devSrv processes. A watchdog service included in Juniper NSM, though, automatically restarts the...

[Full-disclosure] Juniper NSM remote Denial Of Service

Juniper NSM remote Denial Of Service "NetScreen-Security Manager is a software that enables you to integrate and centralize management of your Juniper Networks NetScreen security environment." More information can be found on http://www.juniper.net/customers/support/products/nsm.jsp Description:...