#VU7508 Security restrictions bypass in Juniper Junos OS - CVE-2017-2343

Cybersecurity Help s.r.o.

Published: 2017-07-13

Vulnerability identifier: #VU7508

Vulnerability risk: High

CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2017-2343

CWE-ID: CWE-798

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Juniper Junos OS
Operating systems & Components / Operating system

Vendor: Juniper Networks, Inc.

Description
The vulnerability allows a remote attacker to gain root access to the target system.

The weakness exists due to use of hard-coded authentication credentials by the Integrated User Firewall feature. A remote attacker can pass these credentials in clear text or in an encrypted format and gain control of the target system, other SRX Series devices in the same environment and Active Directory servers and services.

Successful exploitation of the vulnerability results in full control over the system.

Mitigation
Update to version 12.3X48-D35, 15.1X49-D50.

Vulnerable software versions

Juniper Junos OS: 12.3X48-D30 - 12.3x48, 15.1X49-D40 - 15.1X49

External links
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10791

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Juniper Junos