Junos OS: Clear Text Authentication Credentials (JSA10969)
Low Nessus Plugin ID 130459
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version number, the remote Juniper Junos device is affected by a vulnerability which is when the user uses console management port to authenticate, the credentials used during device authentication are written to a log file in clear text.
This issue does not affect users that are logging-in using telnet, SSH or J-web to the management IP as referenced in the JSA10969 advisory.
SolutionApply the relevant Junos software release referenced in Juniper advisory JSA10969.