Junos Pulse Secure Access IVE / UAC OS Weak Cipher Information Disclosure (JSA10628)
Medium Nessus Plugin ID 76306
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version, the version of IVE / UAC OS running on the remote host is affected by an information disclosure vulnerability due to an issue where cipher suites with weak encryption algorithms are used even when cipher suites with strong encryption algorithms are enabled.
SolutionUpgrade to Juniper Junos IVE OS version 7.4r5 / 8.0r1 or later or UAC OS version 4.4r5 / 5.0r1 or later.