PT-2015-2868 · Juniper Networks · Screenos
The Grugq
·
Published
2015-12-18
·
Updated
2016-12-07
·
CVE-2015-7756
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Juniper ScreenOS versions 6.2.0r15 through 6.2.0r18
Juniper ScreenOS versions 6.3.0r12 before 6.3.0r12b
Juniper ScreenOS versions 6.3.0r13 before 6.3.0r13b
Juniper ScreenOS versions 6.3.0r14 before 6.3.0r14b
Juniper ScreenOS versions 6.3.0r15 before 6.3.0r15b
Juniper ScreenOS versions 6.3.0r16 before 6.3.0r16b
Juniper ScreenOS versions 6.3.0r17 before 6.3.0r17b
Juniper ScreenOS versions 6.3.0r18 before 6.3.0r18b
Juniper ScreenOS versions 6.3.0r19 before 6.3.0r19b
Juniper ScreenOS versions 6.3.0r20 before 6.3.0r21
Description
The encryption implementation in Juniper ScreenOS makes it easier for remote attackers to discover the plaintext content of VPN sessions by sniffing the network for ciphertext data and conducting an unspecified decryption attack. This issue is related to the implementation of a cryptographic protocol, which can be exploited by a remote attacker to decrypt messages transmitted within a VPN session by analyzing network traffic.
Recommendations
For Juniper ScreenOS versions 6.2.0r15 through 6.2.0r18, update to a version outside of this range.
For Juniper ScreenOS versions 6.3.0r12 before 6.3.0r12b, update to 6.3.0r12b or later.
For Juniper ScreenOS versions 6.3.0r13 before 6.3.0r13b, update to 6.3.0r13b or later.
For Juniper ScreenOS versions 6.3.0r14 before 6.3.0r14b, update to 6.3.0r14b or later.
For Juniper ScreenOS versions 6.3.0r15 before 6.3.0r15b, update to 6.3.0r15b or later.
For Juniper ScreenOS versions 6.3.0r16 before 6.3.0r16b, update to 6.3.0r16b or later.
For Juniper ScreenOS versions 6.3.0r17 before 6.3.0r17b, update to 6.3.0r17b or later.
For Juniper ScreenOS versions 6.3.0r18 before 6.3.0r18b, update to 6.3.0r18b or later.
For Juniper ScreenOS versions 6.3.0r19 before 6.3.0r19b, update to 6.3.0r19b or later.
For Juniper ScreenOS versions 6.3.0r20 before 6.3.0r21, update to 6.3.0r21 or later.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Screenos