Juniper.Networks.JUNOS.JWeb.Multiple.XSS.And.HTML.Injection
Description
This indicates an attack attempt against a Cross Site Scripting and HTML Injection vulnerability in Juniper Networks JUNOS.
The vulnerability may allow an attacker to execute arbitrary Javascript and HTML code through a specially crafted URL, in the context of the affected site. As a result the attacker could steal cookie based authentication credentials and control how the site is displayed to a user.
Affected Products
Juniper Networks JUNOS 9.0 R1.1
Juniper Networks JUNOS 8.5 R1.14
Impact
Information Spoofing: Remote attackers can spoof the data of vulnerable systems.
Recommended Actions
Currently we are not aware of any vendor supplied patch for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |