This script is Copyright (C) 2014-2017 Tenable Network Security, Inc.
The remote device is affected by multiple vulnerabilities.
According to its self-reported version number, the remote Junos Space
version is prior to 13.1R1.6. It is, therefore, affected by the
following vulnerabilities :
- Multiple Vulnerabilities related to the included Apache
HTTP server. (CVE-2011-3368, CVE-2011-4317,
- A cross-site scripting flaw within the web interface
that allows a remote attacker, with a specially crafted
request, to access sensitive information.
- A flaw exists with the access control implementation
that allows a remote attacker with read-only privileges
to change the device's configuration. (CVE-2013-5096)
- An information disclosure flaw exists that allows a
remote attacker to obtain a list of users and their
hashed passwords. (CVE-2013-5097)
See also :
Upgrade to Junos Space 13.1R1.6 or later.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.3
Public Exploit Available : true
Family: Junos Local Security Checks
Nessus Plugin ID: 80192 ()
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now