This script is Copyright (C) 2017 Tenable Network Security, Inc.
The remote device is missing a vendor-supplied security patch.
According to its self-reported version and configuration, the remote
Juniper Junos device has hardcoded credentials for the Integrated User
Firewall (UserFW) services authentication API. An unauthenticated,
remote attacker can exploit this to gain administrative access to the
See also :
Upgrade to the relevant Junos software release referenced in Juniper
security advisory JSA10791.
Risk factor :
Critical / CVSS Base Score : 10.0