Juniper NorthStar Controller Application CVE-2017-2331 Authentication Bypass Vulnerability

Juniper NorthStar Controller Application is prone to an authentication-bypass vulnerability.

An attacker can exploit this issue to bypass the authentication mechanism and perform unauthorized actions. This may lead to further attacks.

Juniper NorthStar Controller Application before version 2.1.0 Service Pack 1 are vulnerable.

Information

Bugtraq ID: 97619
Class: Design Error
CVE: CVE-2017-2331

Remote: Yes
Local: No
Published: Apr 11 2017 12:00AM
Updated: Apr 13 2017 06:06PM
Credit: The vendor reported this issue.
Vulnerable: Juniper NorthStar Controller Application 2.1.0

Not Vulnerable: Juniper NorthStar Controller Application 2.1.0 Service Pack 1

References:

• Juniper HomePage (Juniper)
  
• 2107-04 Security Bulletin: Multiple Vulnerabilities in NorthStar Controller Appl (juniper)
  

Source: www.securityfocus.com