64 matches found
EUVD-2014-3761
Malware in sbrugna...
EUVD-2014-3762
Malware in sbrugna...
EUVD-2013-5489
Malware in sbrugna...
EUVD-2014-3749
Malware in sbrugna...
EUVD-2014-2330
Malware in sbrugna...
EUVD-2014-2329
Malware in sbrugna...
EUVD-2013-3902
Malware in sbrugna...
CVE-2013-3970
Juniper Junos Pulse Secure Access Service aka SSL VPN with IVE OS 7.0r2 through 7.0r8 and 7.1r1 through 7.1r5 and Junos Pulse Access Control Service aka UAC with UAC OS 4.1r1 through 4.1r5 include a test Certification Authority CA certificate in the Trusted Server CAs list, which makes it easier...
JSA10647 - 2014-09 Security Bulletin: Junos Pulse Secure Access Service (SSL VPN): Clickjacking issue (CVE-2014-3823)
Ivanti 4th of March 2024 - This isn't an active SA and any new edits are part of an article maintenance project. A clickjacking issue has been found in the Pulse Connect Secure product. 'X-Frame-Options' has been added to defend against this type of attack. The attack could take place against...
Description of the security update for Juniper Networks Windows In-Box Junos Pulse client for systems that do not have update 2919355 installed: May 5, 2014
Description of the security update for Juniper Networks Windows In-Box Junos Pulse client for systems that do not have update 2919355 installed: May 5, 2014 INTRODUCTION Microsoft has released a security advisory about this issue for IT professionals. The security advisory contains additional...
Description of the security update for Juniper Networks Windows In-Box Junos Pulse client for systems that have update 2919355 installed: May 5, 2014
Description of the security update for Juniper Networks Windows In-Box Junos Pulse client for systems that have update 2919355 installed: May 5, 2014 INTRODUCTION Microsoft has released a security advisory about this issue for IT professionals. The security advisory contains additional...
Microsoft security advisory: Update for vulnerability in Juniper Networks Windows In-Box Junos Pulse client: June 9, 2015
Microsoft security advisory: Update for vulnerability in Juniper Networks Windows In-Box Junos Pulse client: June 9, 2015 INTRODUCTION Microsoft has released a security advisory about this issue for IT professionals. The security advisory contains additional security-related information. To view...
CVE-2015-7322
The CVE-2015-7322 issue affects Pulse Connect Secure’s Secure Meeting (Pulse Collaboration). Affected releases expose different join-meeting messages based on meeting status, enabling remote attackers to enumerate valid meeting IDs by issuing a sequence of requests. This is an information-disclos...
MS KB3062760: Update for Vulnerability in Juniper Networks Windows In-Box Junos Pulse Client (FREAK)
The remote Windows host is missing KB3062760, which resolves multiple OpenSSL vulnerabilities in the Juniper Networks Windows In-Box Junos Pulse client shipped with Windows 8.1 : - A flaw exists with ECDH handshakes when using an ECDSA certificate without a ServerKeyExchange message. This allows ...
CVE-2014-3823
The Juniper Junos Pulse Secure Access Service SSL VPN devices with IVE OS 8.0 before 8.0r1, 7.4 before 7.4r5, and 7.1 before 7.1r18 allows remote attackers to conduct clickjacking attacks via unspecified vectors...
CVE-2014-3824
Cross-site scripting XSS vulnerability in the web server in the Juniper Junos Pulse Secure Access Service SSL VPN devices with IVE OS 8.0 before 8.0r6, 7.4 before 7.4r13, and 7.1 before 7.1r20 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2014-3811
Juniper Installer Service JIS Client 7.x before 7.4R6 for Windows and Junos Pulse Client before 4.0R6 allows local users to gain privileges via unspecified vectors...
CVE-2014-3820
Cross-site scripting XSS vulnerability in the SSL VPN/UAC web server in the Juniper Junos Pulse Secure Access Service SSL VPN devices with IVE OS 7.1 before 7.1r16, 7.4 before 7.4r3, and 8.0 before 8.0r1 and the Juniper Junos Pulse Access Control Service devices with UAC OS 4.1 before 4.1r8, 4.4...
Cross site scripting
Cross-site scripting XSS vulnerability in the SSL VPN/UAC web server in the Juniper Junos Pulse Secure Access Service SSL VPN devices with IVE OS 7.1 before 7.1r16, 7.4 before 7.4r3, and 8.0 before 8.0r1 and the Juniper Junos Pulse Access Control Service devices with UAC OS 4.1 before 4.1r8, 4.4...
Cross site scripting
Cross-site scripting XSS vulnerability in the web server in the Juniper Junos Pulse Secure Access Service SSL VPN devices with IVE OS 8.0 before 8.0r6, 7.4 before 7.4r13, and 7.1 before 7.1r20 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...