Juniper Junos CVE-2019-0073 Local Insecure File Permissions Vulnerability

Description

Juniper Junos is prone to a local insecure file-permission vulnerability. A local attacker can exploit this issue to access sensitive information stored in the file-system. The following versions of Junos are vulnerable. Juniper Junos 15.1X49 versions prior to 15.1X49-D180 Juniper Junos 17.3 versions prior to 17.3R3-S7 Juniper Junos 17.4 versions prior to 17.4R2-S8, 17.4R3 Juniper Junos 18.1 versions prior to 18.1R3-S8 Juniper Junos 18.2 versions prior to 18.2R3 Juniper Junos 18.3 versions prior to 18.3R2 Juniper Junos 18.4 versions prior to 18.4R2

Technologies Affected

• Juniper Junos 15.1X49
• Juniper Junos 17.3
• Juniper Junos 17.4
• Juniper Junos 18.1
• Juniper Junos 18.2
• Juniper Junos 18.3
• Juniper Junos 18.4

Recommendations

Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
Permit local interactive access to known and trusted individuals only. Use of restricted environments such as chroot and jail may also limit exposure to this and other latent vulnerabilities.

Updates are available. Please see the references or vendor advisory for more information.