 |
Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | ||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.106348 |
| Categoría: | JunOS Local Security Checks |
| Título: | Juniper Networks Junos Space Multiple Vulnerabilities (JSA10760) |
| Resumen: | Juniper Networks Junos Space is prone to multiple; vulnerabilities. |
| Descripción: | Summary: Juniper Networks Junos Space is prone to multiple vulnerabilities. Vulnerability Insight: The following flaws exist: - CVE-2016-4926: Insufficient authentication vulnerability in Junos Space may allow remote network based users with access to Junos Space web interface to perform certain administrative tasks without authentication. - CVE-2016-4927: Insufficient validation of SSH keys in Junos Space may allow man-in-the-middle (MITM) type of attacks while a Space device is communicating with managed devices. - CVE-2016-4928: Cross site request forgery vulnerability in Junos Space may allow remote attackers to perform certain administrative actions on Junos Space. - CVE-2016-4929: Command injection vulnerability in Junos Space may allow unprivileged users to execute code as root user on the device. - CVE-2016-4930: Cross site scripting vulnerability may allow remote attackers to steal sensitive information or perform certain administrative actions on Junos Space. - CVE-2016-4931: XML entity injection vulnerability may allow unprivileged users to cause a denial of service condition. Affected Software/OS: Juniper Networks Junos Space versions prior to 15.2R2. Solution: Update to version 15.2R2 or later. CVSS Score: 9.0 CVSS Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C |
| Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2016-4926 BugTraq ID: 93540 http://www.securityfocus.com/bid/93540 Common Vulnerability Exposure (CVE) ID: CVE-2016-4927 Common Vulnerability Exposure (CVE) ID: CVE-2016-4928 Common Vulnerability Exposure (CVE) ID: CVE-2016-4929 Common Vulnerability Exposure (CVE) ID: CVE-2016-4930 Common Vulnerability Exposure (CVE) ID: CVE-2016-4931 |
| Copyright | Copyright (C) 2016 Greenbone AG |
| Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |