Juniper NetScreen VPN Client Multiple Buffer Overflow Vulnerabilities
Critical Nessus Plugin ID 70121
SynopsisThe remote host is affected by multiple buffer overflow vulnerabilities.
DescriptionThe remote host is running a version of Juniper NetScreen VPN client that is affected by multiple buffer overflow vulnerabilities :
- The IKE VPN service listening on UDP port 62514 is vulnerable to a stack overflow vulnerability that can be triggered by sending specially crafted packets.
- spdedit.exe has a flaw in parsing specially crafted SPD files that can be utilized to trigger a stack overflow.
Successful exploitation of either of these vulnerabilities could allow a remote attacker to execute arbitrary code on the host.
SolutionUpgrade to Juniper NetScreen 9.0r5 or higher.