Juniper NSM Servers < 2012.2R5 Multiple Vulnerabilities
Medium Nessus Plugin ID 71023
Synopsis
The remote host is affected by multiple vulnerabilities.
Description
According to the version of one or more Juniper NSM servers running on the remote host, it is potentially affected by the following vulnerabilities related to the included Apache Tomcat version :
- An error exists related to handling requests containing several parameters that could allow denial of service attacks. (CVE-2012-0022)
- An error exists related to handling partial HTTP requests that could allow denial of service attacks.
(CVE-2012-5568)
- Errors exist related to handling DIGEST authentication that could allow security mechanisms to be bypassed.
(CVE-2012-5885, CVE-2012-5886, CVE-2012-5887)
Solution
Upgrade to NSM version 2012.2R5.