Release DateAug 20, 2009 |
Severityhigh |
ImpactSystem Compromise: Remote attackers can gain control of vulnerable systems. |
DescriptionThis indicates an attempt to attack the buffer overflow vulnerability in Juniper SSL-VPN Client. The vulnerability in ActiveX inside JuniperSetupDLL.dll is caused by insufficient checking of user-supplied input for ProductName parameter. |
Affected ProductsJuniper Networks SSL-VPN Client 0 |
Recommended ActionsJuniper Networks has released a security alert (PSN-2006-03-013) and patch to fix this issue. |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2006-2086 |
Reference/shttp://www.securityfocus.com/bid/17712 (BugTraq) |
