Juniper NorthStar Controller Application CVE-2017-2316 Local Buffer Overflow Vulnerability

Juniper NorthStar Controller Application is prone to a local buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data.

An attacker can exploit this issue to crash the affected application, resulting in denial-of-service condition. Due to the nature of this issue, arbitrary code execution may be possible but this has not been confirmed.

Versions prior to Juniper NorthStar Controller Application 2.1.0 Service Pack 1 are vulnerable.

Information

Bugtraq ID: 97601
Class: Failure to Handle Exceptional Conditions
CVE: CVE-2017-2316

Remote: No
Local: Yes
Published: Apr 12 2017 12:00AM
Updated: Apr 14 2017 12:05AM
Credit: The vendor reported this issue.
Vulnerable: Juniper NorthStar Controller Application 2.1.0

Not Vulnerable: Juniper NorthStar Controller Application 2.1.0 Service Pack 1

References:

• Juniper HomePage (Juniper)
  
• 2107-04 Security Bulletin: Multiple Vulnerabilities in NorthStar Controller Appl (juniper)
  

Source: www.securityfocus.com