Vulnerabilities > CVE-2005-4587 - Remote Denial of Service vulnerability in Juniper NetScreen-Security Manager 2004

047910
CVSS 7.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
COMPLETE
network
low complexity
juniper
nessus

Summary

Juniper NetScreen-Security Manager (NSM) 2004 FP2 and FP3 allow remote attackers to cause a denial of service (crash or hang of server components that are automatically restarted) via a long crafted string on (1) port 7800 (the GUI Server port) or (2) port 7801 (the Device Server port).

Vulnerable Configurations

Part Description Count
Application
Juniper
2

Nessus

NASL familyFirewalls
NASL idNSM2004_DOS.NASL
descriptionThe version of Juniper NetScreen-Security Manager (NSM) installed on the remote host may allow an attacker to deny service to legitimate users using specially crafted long strings to the guiSrv and devSrv processes. A watchdog service included in Juniper NSM, though, automatically restarts the application. By repeatedly sending a malformed request, an attacker may permanently deny access to legitimate users.
last seen2020-06-01
modified2020-06-02
plugin id20388
published2006-01-10
reporterThis script is Copyright (C) 2006-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/20388
titleJuniper NetScreen Security Manager (NSM) guiSrv/devSrv Crafted String Remote DoS