PT-2004-2670 · Juniper Networks · Netscreen-Security Manager+1

Published

2004-01-20

Updated

2017-07-11

CVE-2004-1766

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions NetScreen-Security Manager versions prior to Feature Pack 1

Description The issue concerns the default installation of NetScreen-Security Manager, where encryption for communication with devices running ScreenOS 5.0 is not enabled. This allows remote attackers to obtain sensitive information via sniffing.

Recommendations For versions prior to Feature Pack 1, enable encryption for communication with devices running ScreenOS 5.0 to prevent sensitive information from being obtained via sniffing.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-1766

Affected Products

Netscreen-Security Manager

Screenos

PT-2004-2670 · Juniper Networks · Netscreen-Security Manager+1

CVE-2004-1766

Related Identifiers

Affected Products

References · 9