CVE-2015-7754

Sažetak

Juniper ScreenOS before 6.3.0r21, when ssh-pka is configured and enabled, allows remote attackers to cause a denial of service (system crash) or execute arbitrary code via crafted SSH negotiation.

Reference

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10712
http://www.securityfocus.com/bid/79627
http://www.securitytracker.com/id/1034490

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

13-01-2016 - 18:55

Objavljeno

08-01-2016 - 19:59