Juniper Networks yesterday released a security advisory of a serious vulnerability in JunOS. It relates to a an information leak in J-Web, the web based GUI for JunOS products such as SRX and EX Switches. It is serious because it can potentially allow unauthenticated and remote users to gain administrative privileges on the platform.
2016-07 Security Bulletin: Junos J-Web: Privilege Escalation due to information leak (CVE-2016-1279)
There have so far been no reported cases of malicious exploitation as yet. The issue is fixed in recent versions of JunOS (listed below). If an upgrade isn’t possible at this time, the work around will be to disable J-Web, or restrict J-Web access to trusted hosts.
[popup_trigger id=”265″ tag=”span”]If you need help addressing this issue or you want to discuss potential exposure and risk, please do not hesitate to contact us immediately.
[/popup_trigger]
JunOS versions containing a fix;
Junos OS 12.1X46-D45, 12.1X46-D46, 12.1X46-D51, 12.1X47-D35, 12.3R12, 12.3X48-D25, 13.3R10, 13.3R9-S1, 14.1R7, 14.1X53-D35, 14.2R6, 15.1A2, 15.1F4, 15.1X49-D30, 15.1R3 and all subsequent releases.
