Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0891

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2002-0891
Last Modified 05 Sep 2008 04:29:13
Published 04 Oct 2002 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0891

Summary

The web interface (WebUI) of NetScreen ScreenOS before 2.6.1r8, and certain 2.8.x and 3.0.x versions before 3.0.3r1, allows remote attackers to cause a denial of service (crash) via a long user name.

Vulnerable Systems

Operating System

  • Juniper Netscreen Screenos 2.10 R3

  • Juniper Netscreen Screenos 2.10 R4

  • Juniper Netscreen Screenos 2.5

  • Juniper Netscreen Screenos 2.5r1

  • Juniper Netscreen Screenos 2.5r2

  • Juniper Netscreen Screenos 2.5r6

  • Juniper Netscreen Screenos 2.6.1

  • Juniper Netscreen Screenos 2.6.1r1

  • Juniper Netscreen Screenos 2.6.1r2

  • Juniper Netscreen Screenos 2.6.1r3

  • Juniper Netscreen Screenos 2.6.1r4

  • Juniper Netscreen Screenos 2.6.1r5

  • Juniper Netscreen Screenos 2.7.1

  • Juniper Netscreen Screenos 2.7.1r1

  • Juniper Netscreen Screenos 2.7.1r2

  • Juniper Netscreen Screenos 2.7.1r3

  • Juniper Netscreen Screenos 2.8 R1

  • Juniper Netscreen Screenos 3.0.0

  • Juniper Netscreen Screenos 3.0.0r1

  • Juniper Netscreen Screenos 3.0.0r2

  • Juniper Netscreen Screenos 3.0.0r3

  • Juniper Netscreen Screenos 3.0.0r4

  • Juniper Netscreen Screenos 3.0.1r1


References

BID - 4842

CONFIRM - http://www.netscreen.com/support/ns25_reboot.html

XF - netscreen-screenos-username-dos(9186)

BUGTRAQ - 20020527 Netscreen 25 unauthorised reboot issue


Last Updated: 27 May 2016 10:37:07