19 matches found
CVE-2017-2319
Affected product/component: Juniper Networks NorthStar Controller Application (NorthStar Controller). Vulnerability: Authentication bypass that can allow a remote attacker to compromise confidentiality and integrity without authentication, potentially affecting managed systems and making services...
CVE-2017-2330
CVE-2017-2330 affects Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1. An unauthenticated local attacker can trigger a fork bomb (rabbit virus) that spawns processes until system resources are exhausted, causing DoS and potential persistent denial of servic...
CVE-2017-2333
Juniper Networks NorthStar Controller Application, before version 2.1.0 Service Pack 1, is vulnerable to a persistent denial of service. A network-based, authenticated attacker can exhaust resources by visiting certain URLs, leading to partial availability impact. The description and connected so...
CVE-2017-2318
The connected documents confirm CVE-2017-2318 affects Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1. An authenticated malicious user may read log files, compromising integrity, and may gain elevation of privileges. This is tied to the NorthStar Controller...
CVE-2017-2326
The vulnerability CVE-2017-2326 affects Juniper Networks NorthStar Controller Application prior to 2.1.0 Service Pack 1. An information-disclosure flaw could allow an unprivileged, authenticated, network-based attacker to replicate the underlying Junos OS VM and all data it maintains to the attac...
CVE-2017-2332
CVE-2017-2332 involves an insufficient authentication vulnerability in Juniper Networks NorthStar Controller Application, prior to version 2.1.0 Service Pack 1. An unauthenticated, network-based attacker could perform privileged actions to gain complete control of the environment. Affected produc...
CVE-2017-2324
CVE-2017-2324 affects Juniper Networks NorthStar Controller Application (before 2.1.0 Service Pack 1). The vulnerability is a command injection in the NorthStar Controller Application that an attacker could exploit over the network to cause a denial of service. The public documents identify the a...
CVE-2017-2317
Juniper Networks NorthStar Controller Application before version 2.1.0 Service Pack 1 is vulnerable to a denial-of-service attack from an unauthenticated, network-based attacker. The issue can cause DoS of underlying database tables and may lead to information disclosure, modification of system s...
CVE-2017-2334
The CVE-2017-2334 entry affects Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1. An attacker on the network may leverage an information-disclosure flaw to perform a man-in-the-middle attack, stealing credentials from encrypted paths and potentially gaining ...
CVE-2017-2320
The CVE affects Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1. An unauthenticated, unprivileged, network-based attacker can cause various denials of service and may modify any component of the NorthStar system, including managed systems, or cause full DoS...
CVE-2017-2322
Affected product/issue: Juniper Networks NorthStar Controller Application (prior to 2.1.0 Service Pack 1). Vulnerability summary: An authenticated user can cause widespread denial of service by consuming TCP and UDP ports normally reserved for other system services. Root cause (as described): DoS...
CVE-2017-2328
The vulnerability CVE-2017-2328 affects Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1. An information disclosure flaw allows an unprivileged, authenticated user to read unprivileged information stored in the NorthStar controller, enabling elevation of per...
CVE-2017-2316
The CVE-2017-2316 entry concerns Juniper Networks NorthStar Controller Application (pre-2.1.0 Service Pack 1). The vulnerability is a buffer overflow that can be triggered by an authenticated attacker, potentially causing a denial of service. Affected component: NorthStar Controller Application; ...
CVE-2017-2323
CVE-2017-2323 : Affects Juniper Networks NorthStar Controller Application prior to 2.1.0 Service Pack 1. Vulnerability is a denial of service where a malicious actor sending crafted packets to the device can cause a persistent denial of service to the path computation server service. Documentatio...
CVE-2017-2325
Summary: CVE-2017-2325 refers to a buffer overflow in Juniper Networks NorthStar Controller Application before version 2.1.0 Service Pack 1, which could be triggered by an authenticated user to cause a denial of service. The connected CNVD/CNVD-2017-07222 and related records corroborate the affec...
CVE-2017-2327
CVE-2017-2327 affects the Juniper Networks NorthStar Controller Application prior to 2.1.0 Service Pack 1. An authenticated attacker can cause a denial of service by consuming large amounts of system resources, leading to cascading DoS. The available documents identify the affected product and vu...
CVE-2017-2321
CVE-2017-2321 affects Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1. An unauthenticated, unprivileged, network-based attacker could cause partial to full denial of service, modify system states and files, and potentially disclose sensitive information. Th...
CVE-2017-2331
CVE-2017-2331 affects Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1. The connected documents describe a firewall bypass vulnerability that could allow a network-based attacker to bypass firewall policies, leading to authentication bypass, information disc...
CVE-2017-2329
The Juniper Networks NorthStar Controller Application is affected prior to 2.1.0 Service Pack 1. An insufficient authentication flaw could allow an unprivileged, authenticated user to execute certain unprivileged system files, enabling widespread denial of service. Root cause: insufficient authen...