Juniper Junos SRX IDP Remote Command Injection (JSA10801)
High Nessus Plugin ID 102076
SynopsisThe remote device is affected by a remote command injection vulnerability.
DescriptionAccording to its self-reported version and model number, the remote Juniper Junos device is affected by a remote command injection vulnerability in the IDP feature due to improper validation of user-supplied input. An authenticated, remote attacker can exploit this to execute arbitrary shell commands with elevated privileges.
SolutionUpgrade to the relevant Junos software release referenced in Juniper security advisory JSA10801.