Vigil@nce: JUNOS, NetScreen IDP, Cross Site Scripting
April 2009 by Vigil@nce
SYNTHESIS OF THE VULNERABILITY
An attacker can generate two Cross Site Scripting in Juniper
products.
Severity: 2/4
Consequences: client access/rights
Provenance: document
Means of attack: no proof of concept, no attack
Ability of attacker: expert (4/4)
Confidence: confirmed by the editor (5/5)
Diffusion of the vulnerable configuration: high (3/3)
Number of vulnerabilities in this bulletin: 2
Creation date: 15/04/2009
IMPACTED PRODUCTS
– Juniper JUNOS
DESCRIPTION OF THE VULNERABILITY
An attacker can generate two Cross Site Scripting in Juniper
products.
An attacker can generate a Cross Site Scripting in the JUNOS 8.5
web management console. [grav:2/4; PSN-2009-04-326]
An attacker can generate a Cross Site Scripting in NetScreen IDP
ACM (Appliance Configuration Manager). [grav:2/4; PSN-2009-01-191]
CHARACTERISTICS
Identifiers: PSN-2009-01-191, PSN-2009-04-326, VIGILANCE-VUL-8639
http://vigilance.fr/vulnerability/JUNOS-NetScreen-IDP-Cross-Site-Scripting-8639