Vulnerabilities > Juniper > Secure Access 2000

DATE CVE VULNERABILITY TITLE RISK
2013-08-01 CVE-2012-5460 Cross-Site Scripting vulnerability in Juniper products
Cross-site scripting (XSS) vulnerability in the help page in Juniper Secure Access (SA) with IVE OS before 7.1r13, 7.2.x before 7.2r7, and 7.3.x before 7.3r2 allows remote attackers to inject arbitrary web script or HTML via the WWHSearchWordsText parameter.
network
juniper CWE-79
4.3
4.3
2008-03-06 CVE-2008-1181 Information Exposure vulnerability in Juniper Secure Access 2000 5.5
Juniper Networks Secure Access 2000 5.5 R1 (build 11711) allows remote attackers to obtain sensitive information via a direct request for remediate.cgi without certain parameters, which reveals the path in an "Execute failed" error message.
network
low complexity
juniper CWE-200
5.0
5.0
2008-03-06 CVE-2008-1180 Cross-Site Scripting vulnerability in Juniper Secure Access 2000 5.5
Cross-site scripting (XSS) vulnerability in dana-na/auth/rdremediate.cgi in Juniper Networks Secure Access 2000 5.5 R1 build 11711 allows remote attackers to inject arbitrary web script or HTML via the delivery_mode parameter.
network
juniper CWE-79
4.3
4.3