PT-2016-1750 · Juniper Networks · Screenos

Published

2016-04-15

Updated

2016-12-03

CVE-2016-1268

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Juniper ScreenOS versions prior to 6.3.0r21

Description The issue is related to insufficient input validation in the administrative web services interface. It allows remote attackers to cause a denial of service, resulting in a reboot, by sending crafted SSL packets.

Recommendations For versions prior to 6.3.0r21, update to version 6.3.0r21 or later to resolve the issue.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

BDU:2016-01076

CVE-2016-1268

Affected Products

Screenos

PT-2016-1750 · Juniper Networks · Screenos

CVE-2016-1268

Weakness Enumeration

Related Identifiers

Affected Products

References · 6