Juniper ScreenOS SSH / Telnet Authentication Backdoor
Critical Nessus Plugin ID 87601
SynopsisAn account on the remote host uses a known password.
DescriptionThe account 'netscreen' on the remote host has the password '<<< %s(un='%s') = %u', a known backdoor password. The affected devices are firewalls and VPN gateways. A remote attacker can exploit this vulnerability to gain administrative access and monitor network traffic, deny network access, and alter device and firewall configurations.
SolutionUpgrade to Juniper ScreenOS 6.2.0r19 / 6.3.0r21 or later.
Alternatively, apply the appropriate patch referenced in the vendor advisory.