CVE-2017-2321

Name of the Vulnerable Software and Affected Versions Juniper Networks NorthStar Controller Application versions prior to 2.1.0 Service Pack 1

Description A vulnerability may allow an unauthenticated, unprivileged, network-based attacker to cause various system services partial to full denials of services, modification of system states and files, and potential disclosure of sensitive information. This could assist the attacker in further attacks on the system through multiple attack vectors, including man-in-the-middle attacks, file injections, and malicious execution of commands, potentially leading to out of bound memory conditions and other attacks.

Recommendations For versions prior to 2.1.0 Service Pack 1, update to version 2.1.0 Service Pack 1 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive system services and files to minimize the risk of exploitation.