CVE Reference: CVE-2006-2086

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2006-2086

Description:
Buffer overflow in JuniperSetupDLL.dll, loaded from JuniperSetup.ocx by the Juniper SSL-VPN Client when accessing a Juniper NetScreen IVE device running IVE OS before 4.2r8.1, 5.0 before 5.0r6.1, 5.1 before 5.1r8, 5.2 before 5.2r4.1, or 5.3 before 5.3r2.1, allows remote attackers to execute arbitrary code via a long argument in the ProductName parameter.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/26077

ST
  1016000

SREASON
  http://securityreason.com/securityalert/819

SAID
  Secunia Advisory: SA19842

OSVDB
  25001

MISC
  http://www.eeye.com/html/research/advisories/AD20060424.html

CONFIRM
  http://www.juniper.net/support/security/alerts/PSN-2006-03-013.txt

CERT-VN
  477604

BUGTRAQ
  http://www.securityfocus.com/archive/1/archive/1/432155/100/0/threaded

BID
  17712


Return to the previous page.