Some of Our Sources
- Web Designer Wall
- Smashing Apps
- FanExtra - PSD
- My Ink Blog
- 24 Ways
- Wal You
- Specky Boy
- Spyre Studios
- Android Dissected
- Dev To
Help Webnuz
Referal links:
December 18, 2015 04:00 pm
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/olsWk09P7F4/unauthorized-code-in-juniper-firewalls-could-decrypt-vpn-traffic
'Unauthorized Code' In Juniper Firewalls Could Decrypt VPN Traffic
m2pc writes: Ars Technica reports that Juniper Networks firewalls have been discovered to include "unauthorized code" inserted into their ScreenOS software. Juniper has has published an advisory addressing the matter, with instructions to patch the affected devices. From the Ars article: "NetScreen firewalls using ScreenOS 6.2.0r15 through 6.2.0r18 and 6.3.0r12 through 6.3.0r20 are affected and require immediate patching. Release notes published by Juniper suggest the earliest vulnerable versions date back to at least 2012 and possibly earlier. ... The first flaw allows unauthorized remote administrative access to an affected device over SSH or telnet. Exploits can lead to complete compromise. 'The second issue may allow a knowledgeable attacker who can monitor VPN traffic to decrypt that traffic,' the advisory said." The rogue code was discovered during a recent internal source code review conducted by Juniper.Read more of this story at Slashdot.
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/olsWk09P7F4/unauthorized-code-in-juniper-firewalls-could-decrypt-vpn-traffic
Share this article:
Tweet
View Full Article
Slashdot
Slashdot was originally created in September of 1997 by Rob "CmdrTaco" Malda. Today it is owned by Geeknet, Inc..More About this Source Visit Slashdot