Security Alerts & News
by Tymoteusz A. Góral

History
#1154 Juniper patches high-risk flaws in Junos OS
Juniper Networks has fixed several vulnerabilities in the Junos operating system used on its networking and security appliances, including a flaw that could allow hackers to gain administrative access to affected devices.

The most serious vulnerability, rated 9.8 out of 10 in the Common Vulnerability Scoring System, is located in the J-Web interface, which allows administrators to monitor, configure, troubleshoot and manage routers running Junos OS. The issue is an information leak that could allow unauthenticated users to gain admin privileges to the device.

The flaw was fixed in Junos OS 12.1X46-D45, 12.1X46-D46, 12.1X46-D51, 12.1X47-D35, 12.3R12, 12.3X48-D25, 13.3R10, 13.3R9-S1, 14.1R7, 14.1X53-D35, 14.2R6, 15.1A2, 15.1F4, 15.1X49-D30 and 15.1R3. A temporary workaround is to disable J-Web or to limit which IP addresses can access the interface.
Read more
#1156 Ubuntu linux forums hacked - IP address, username and email of 2M accounts compromised
#1155 Now ransomware is taking aim at business networks
#1154 Juniper patches high-risk flaws in Junos OS
#1153 Exploit kits quickly adopt exploit thanks to open source release
#1152 Crypto flaw made it easy for attackers to snoop on Juniper customers
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12