This script is Copyright (C) 2012-2015 Tenable Network Security, Inc.
The remote device may grant permissions incorrectly.
According to its self-reported version number, the version of Junos
running on the remote host may grant permissions incorrectly when SSH
sessions are authenticated remotely using TACACS+ for authentication
and authorization. Fetched authorizations are stored in a file whose
name is based on process ID. On unclean exits of the SSH client, this
file is not deleted, and therefore reused for future login sessions
with the same process ID. This could result in authorizations being
applied to the wrong user.
See also :
Apply the relevant Junos upgrade referenced in Juniper advisory
Risk factor :
High / CVSS Base Score : 7.1
CVSS Temporal Score : 5.9
Public Exploit Available : true
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now