Release date:
Updated on:
Affected Systems:
Juniper Networks JUNOS 12.1X45-D10
Juniper Networks JUNOS 12.1X44-D20
Juniper Networks junoperating 12.1X44
Juniper Networks JUNOS 12.1R7
Juniper Networks JUNOS 11.4R8
Juniper Networks JUNOS 10.4R16
Description:
--------------------------------------------------------------------------------
Bugtraq id: 64762
CVE (CAN) ID: CVE-2014-0615
Junos is an application development platform or network operating system used in the Juniper Networks hardware system.
In combination with OS CLI commands and some parameters, Juniper Junos of the SRX Series service has a security vulnerability. You can grant root privileges to access the operating system.
<* Source: vendor
Link: https://kb.juniper.net/InfoCenter/index? Page = content & id = JSA10608
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Juniper Networks
----------------
Juniper Networks has released a Security Bulletin (JSA10608) for this purpose and corresponding patches:
JSA10608: Junos: Multiple privilege escalation vulnerabilities in Junos CLI (CVE-2014-0615)
Link: https://kb.juniper.net/InfoCenter/index? Page = content & id = JSA10608