CVE-2004-0347

CVE-2004-0347 : A cross-site scripting (XSS) vulnerability exists in the delhomepage.cgi script of NetScreen‑SA 5000 Series running firmware 3.3 Patch 1 (build 4797). The issue allows remote authenticated users to inject and execute arbitrary script as other users via the row parameter. Affected ...

CVE-2005-2640

The CVE describes a behavioral discrepancy information leak in Juniper Netscreen VPNs running ScreenOS 5.2.0 and earlier. When using IKE with pre-shared key authentication, remote attackers can enumerate valid usernames by sending an IKE Aggressive Mode packet: a response is generated for valid u...