Certain Secure Access SA Series SSL VPN products (originally developed by Juniper Networks but now sold and supported by Pulse Secure, LLC) allow privilege escalation, as demonstrated by Secure Access SSL VPN SA-4000 5.1R5 (build 9627) 4.2 Release (build 7631). This occurs because appropriate controls are not performed.
4f0f2b6cb76404194c75a1d6b9ff1f4dA special crafted ICMP ECHO REQUEST can cause a denial of service condition on the Juniper SSG20.
99e37f917ddeee37c75d942dc2e036fdJuniper JunOS version 9.x suffers from a html injection vulnerability that allows for cross site scripting attacks.
09aec546e2e8fb3a83f2428948e03269Juniper Secure Access software suffers from a reflective cross site scripting vulnerability.
fb1052242dcca8ce0e3da857c4e03fe9Secunia Security Advisory - A vulnerability has been reported in Juniper JunosE, which can be exploited by malicious people to cause a DoS (Denial of Service).
f0f4f7793f0753955a3901f87aa4dce5This is a presentation called Router Exploitation. It was given at BlackHat 2009. It discusses various vendors such as Cisco, Juniper, Huawei, and more.
e392d0b1fc69f4d7ac2a5079ed9c7203Secunia Security Advisory - Dell SecureWorks has reported a vulnerability in Juniper Networks Mobility System, which can be exploited by malicious people to conduct cross-site scripting attacks.
a5a0106264f66adabf4687b680b966b2Secunia Security Advisory - A vulnerability has been reported in Juniper IVE OS, which can be exploited by malicious people to conduct cross-site scripting attacks.
7f884b12f5f4efc3902b24953f5e7d5aSecunia Security Advisory - A vulnerability has been reported in Juniper IVE OS, which can be exploited by malicious people to conduct cross-site scripting attacks.
60427941d3dc869649f7b3635ffbd356Secunia Security Advisory - A vulnerability has been reported in Juniper Junos, which can be exploited by malicious people to bypass certain security restrictions.
777cb469cbeb9ac894f8bbaedbc3a331Secunia Security Advisory - A vulnerability has been reported in Juniper Junos, which can be exploited by malicious people to cause a DoS (Denial of Service).
31c1851970fdf294df492484302fbf35An ICMPv6 router announcement flooding denial of service vulnerability affects multiple systems including Cisco, Juniper, Microsoft, and FreeBSD. Cisco has addressed the issue but Microsoft has decided to ignore it.
f9b4dca38772e20b8831879129a179baSecunia Security Advisory - A vulnerability has been reported in Juniper Networks Secure Access, which can be exploited by malicious people to bypass certain security restrictions.
bf4d770369728a9200712367f244c212Juniper VPN client with remote desktop lets an attacking spawn Internet Explorer prior to authentication.
0333e86622746f8572e53c7115b95635Secunia Security Advisory - A vulnerability has been reported in Juniper IVE OS, which can be exploited by malicious people to conduct cross-site scripting attacks.
6370d7f2e46fd73a552878c4f5abce0bThis is a list of older cross site scripting and bypass vulnerabilities associated with older Juniper IVE releases.
7a4246773f02b62f12f3b55f5d6a30e8Zero Day Initiative Advisory 10-231 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Juniper SA Series devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the meeting_testjava.cgi page which is used to test JVM compatibility. When handling the DSID HTTP header the code allows an attacker to inject arbitrary javascript into the page. This can be abused by an attacker to perform a cross-site scripting attack on the device.
e1db201e6c5dec0d564680e5ccdbe72cSecunia Security Advisory - Richard Brain has reported a vulnerability in Juniper IVE, which can be exploited by malicious people to conduct cross-site scripting attacks.
fe4b1d27b0f846c6cacbcb9c2069c8c4Procheckup has found by making a malformed request to the Juniper IVE Web interface without authentication, that a vanilla cross site scripting (XSS) attack is possible.
f6fb4247d33cbd7d25d097d83da3d5c1Secunia Security Advisory - Richard Brain has reported a weakness in Juniper IVE OS, which can be exploited by malicious people to conduct redirection attacks.
255713790c3038f759232b231f05a954The Juniper SRX suffers from a dual-homed swapfile overflow error that can cause denial of service conditions.
4b2dc8e18523538f84e8b386bc258691Secunia Security Advisory - Niels Heinen has reported a vulnerability in Juniper Networks Secure Access, which can be exploited by malicious people to conduct cross-site scripting attacks.
1725b49f2c3e818d7e0c02c6d813b346Juniper Secure Access suffers from a cross site scripting vulnerability. SA Appliances running Juniper IVE OS 6.0 or higher are affected.
9b36886cd72016decdf7d91f17eadadcSecunia Security Advisory - A vulnerability has been reported in Juniper Networks Installer Service, which can be exploited by malicious people to compromise a vulnerable system.
b6998ec94d2ba636687fed4b684d1d11Secunia Security Advisory - A vulnerability has been reported in Juniper Networks Secure Access, which can be exploited by malicious people to bypass certain security restrictions.
08d355b6766feaecfe45d73d293a772a
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed