Juniper: >> Netscreen Screenos >> 2.7.0 Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in Juniper NetScreen ScreenOS before 5.4r10, 6.0r6, and 6.1r2 allows remote attackers to inject arbitrary web script or HTML via the user name parameter to the (1) web interface login page or the (2) telnet login page.
CVSS Score
4.3
EPSS Score
0.003
Published
2009-02-09
Netscreen running ScreenOS 4.0.0r6 and earlier allows remote attackers to cause a denial of service via a malformed SSH packet to the Secure Command Shell (SCS) management interface, as demonstrated via certain CRC32 exploits, a different vulnerability than CVE-2001-0144.
CVSS Score
5.0
EPSS Score
0.017
Published
2003-03-31