Juniper Junos Multiple vulnerabilities
Last Update Date:
14 Oct 2016 10:56
Release Date:
14 Oct 2016
2705
Views
RISK: Medium Risk
TYPE: Operating Systems - Networks OS
Multiple vulnerabilities were identified in Juniper JunOS.
- A remote unauthenticated user can perform cross site scripting in target device.
- A remote user can cause denial of service condition by sending specially crafted IPv6 traffic.
- A remote authenticated user can gain unauthorized access to the operating system.
- A remote user can perform man-in-the-middle (MITM) attack on the target device.
Impact
- Cross-Site Scripting
- Denial of Service
- Elevation of Privilege
- Remote Code Execution
- Information Disclosure
System / Technologies affected
- Junos J-Web
- Junos
- Junos Space
- JUNOSe
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
The vendor has released patches.
- https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10764
- https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10762
- https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10763
- https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10760
- https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10767
Vulnerability Identifier
- CVE-2016-4931
- CVE-2016-4930
- CVE-2016-4929
- CVE-2016-4928
- CVE-2016-4927
- CVE-2016-4926
- CVE-2016-4925
- CVE-2016-4923
- CVE-2016-4922
- CVE-2016-4921
Source
Related Link
Share with