Sequretek Advisory - Juniper Junos OS Multiple Vulnerabilties

Juniper has released out-ofcycle updates to multiple vulnerabilities in Junos OS. A remote attacker could chain these vulnerabilities to execute malicious code on vulnerable devices.

Multiple vulnerabilities have been discovered in Junos OS, which when chained together could allow for remote code execution.

Junos OS is an operating system that runs across all Juniper routing, switching, and security infrastructure.

Successful chain exploitation of these vulnerabilities could allow for remote code execution in the context of the affected service account.

Depending on the privileges associated with the service account an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Service accounts that are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.

Sign Up Here for Download