CVE-2008-6096

Cross-site scripting (XSS) vulnerability in Juniper NetScreen ScreenOS before 5.4r10, 6.0r6, and 6.1r2 allows remote attackers to inject arbitrary web script or HTML via the user name parameter to the (1) web interface login page or the (2) telnet login page.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 51%
VendorProductVersion
junipernetscreen_screenos
1.6.0
junipernetscreen_screenos
𝑥
≤ 5.4.0r9.0
junipernetscreen_screenos
2.0.0
junipernetscreen_screenos
2.5.0
junipernetscreen_screenos
2.6.0
junipernetscreen_screenos
2.6.1
junipernetscreen_screenos
2.6.1r1:r1
junipernetscreen_screenos
2.6.1r2:r2
junipernetscreen_screenos
2.6.1r3:r3
junipernetscreen_screenos
2.6.1r4:r4
junipernetscreen_screenos
2.6.1r5:r5
junipernetscreen_screenos
2.6.1r6:r6
junipernetscreen_screenos
2.6.1r7:r7
junipernetscreen_screenos
2.6.1r8:r8
junipernetscreen_screenos
2.6.1r9:r9
junipernetscreen_screenos
2.6.1r10:r10
junipernetscreen_screenos
2.6.1r11:r11
junipernetscreen_screenos
2.6.1r12:r12
junipernetscreen_screenos
2.7.0
junipernetscreen_screenos
2.7.1
junipernetscreen_screenos
2.7.1r1:r1
junipernetscreen_screenos
2.7.1r2:r2
junipernetscreen_screenos
2.7.1r3:r3
junipernetscreen_screenos
3.0.0
junipernetscreen_screenos
3.0.0r1:r1
junipernetscreen_screenos
3.0.0r2:r2
junipernetscreen_screenos
3.0.0r3:r3
junipernetscreen_screenos
3.0.0r4:r4
junipernetscreen_screenos
3.0.1
junipernetscreen_screenos
3.0.1r1:r1
junipernetscreen_screenos
3.0.1r2:r2
junipernetscreen_screenos
3.0.1r3:r3
junipernetscreen_screenos
3.0.1r4:r4
junipernetscreen_screenos
3.0.1r5:r5
junipernetscreen_screenos
3.0.1r6:r6
junipernetscreen_screenos
3.0.1r7:r7
junipernetscreen_screenos
3.0.2
junipernetscreen_screenos
3.0.3
junipernetscreen_screenos
3.0.3r1:r1
junipernetscreen_screenos
3.0.3r1.1:r1.1
junipernetscreen_screenos
3.0.3r2:r2
junipernetscreen_screenos
3.0.3r3:r3
junipernetscreen_screenos
3.0.3r4:r4
junipernetscreen_screenos
3.0.3r5:r5
junipernetscreen_screenos
3.0.3r6:r6
junipernetscreen_screenos
3.0.3r7:r7
junipernetscreen_screenos
3.0.3r8:r8
junipernetscreen_screenos
3.1.0
junipernetscreen_screenos
3.1.0r1:r1
junipernetscreen_screenos
3.1.0r2:r2
junipernetscreen_screenos
3.1.0r3:r3
junipernetscreen_screenos
3.1.0r4:r4
junipernetscreen_screenos
3.1.0r5:r5
junipernetscreen_screenos
3.1.0r6:r6
junipernetscreen_screenos
3.1.0r7:r7
junipernetscreen_screenos
3.1.0r8:r8
junipernetscreen_screenos
3.1.0r9:r9
junipernetscreen_screenos
3.1.0r10:r10
junipernetscreen_screenos
3.1.0r11:r11
junipernetscreen_screenos
3.1.0r12:r12
junipernetscreen_screenos
4.0.0
junipernetscreen_screenos
4.0.0
junipernetscreen_screenos
4.0.0
junipernetscreen_screenos
4.0.0r1:r1
junipernetscreen_screenos
4.0.0r2:r2
junipernetscreen_screenos
4.0.0r3:r3
junipernetscreen_screenos
4.0.0r4:r4
junipernetscreen_screenos
4.0.0r5:r5
junipernetscreen_screenos
4.0.0r6:r6
junipernetscreen_screenos
4.0.0r7:r7
junipernetscreen_screenos
4.0.0r8:r8
junipernetscreen_screenos
4.0.0r9:r9
junipernetscreen_screenos
4.0.0r10:r10
junipernetscreen_screenos
4.0.0r11:r11
junipernetscreen_screenos
4.0.0r12:r12
junipernetscreen_screenos
4.0.1
junipernetscreen_screenos
4.0.1r1:r1
junipernetscreen_screenos
4.0.1r2:r2
junipernetscreen_screenos
4.0.1r3:r3
junipernetscreen_screenos
4.0.1r4:r4
junipernetscreen_screenos
4.0.1r5:r5
junipernetscreen_screenos
4.0.1r6:r6
junipernetscreen_screenos
4.0.1r7:r7
junipernetscreen_screenos
4.0.1r8:r8
junipernetscreen_screenos
4.0.1r9:r9
junipernetscreen_screenos
4.0.1r10:r10
junipernetscreen_screenos
4.0.2
junipernetscreen_screenos
4.0.3
junipernetscreen_screenos
4.0.3r1:r1
junipernetscreen_screenos
4.0.3r2:r2
junipernetscreen_screenos
4.0.3r3:r3
junipernetscreen_screenos
4.0.3r4:r4
junipernetscreen_screenos
4.0.3r5:r5
junipernetscreen_screenos
4.0.3r6:r6
junipernetscreen_screenos
4.0.3r7:r7
junipernetscreen_screenos
4.0.3r8:r8
junipernetscreen_screenos
4.0.3r9:r9
junipernetscreen_screenos
5.0.0
junipernetscreen_screenos
5.0.0r1:r1
junipernetscreen_screenos
5.0.0r2:r2
junipernetscreen_screenos
5.0.0r3:r3
junipernetscreen_screenos
5.0.0r4:r4
junipernetscreen_screenos
5.0.0r5:r5
junipernetscreen_screenos
5.0.0r6:r6
junipernetscreen_screenos
5.0.0r7:r7
junipernetscreen_screenos
5.0.0r8:r8
junipernetscreen_screenos
5.0.0r9:r9
junipernetscreen_screenos
5.0.0r10:r10
junipernetscreen_screenos
5.0.0r11:r11
junipernetscreen_screenos
5.1.0
junipernetscreen_screenos
5.1.0r1:r1
junipernetscreen_screenos
5.1.0r2:r2
junipernetscreen_screenos
5.1.0r3:r3
junipernetscreen_screenos
5.1.0r4:r4
junipernetscreen_screenos
5.2.0
junipernetscreen_screenos
5.2.0r1:r1
junipernetscreen_screenos
5.2.0r2:r2
junipernetscreen_screenos
5.2.0r3:r3
junipernetscreen_screenos
5.3.0
junipernetscreen_screenos
5.3.0r1:r1
junipernetscreen_screenos
5.3.0r2:r2
junipernetscreen_screenos
5.3.0r3:r3
junipernetscreen_screenos
5.3.0r4:r4
junipernetscreen_screenos
5.3.0r5:r5
junipernetscreen_screenos
5.3.0r6:r6
junipernetscreen_screenos
5.3.0r7:r7
junipernetscreen_screenos
5.3.0r8:r8
junipernetscreen_screenos
5.3.0r9:r9
junipernetscreen_screenos
5.3.0r10:r10
junipernetscreen_screenos
5.4.0
junipernetscreen_screenos
5.4.0r1:r1
junipernetscreen_screenos
5.4.0r2:r2
junipernetscreen_screenos
5.4.0r3:r3
junipernetscreen_screenos
5.4.0r4:r4
junipernetscreen_screenos
5.4.0r5:r5
junipernetscreen_screenos
5.4.0r6:r6
junipernetscreen_screenos
5.4.0r7:r7
junipernetscreen_screenos
5.4.0r8:r8
junipernetscreen_screenos
5.4.0r8a:r8a
junipernetscreen_screenos
6.0.0r6:r6
junipernetscreen_screenos
6.1.0r2:r2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/32078
http://www.layereddefense.com/netscreen01oct.html
http://www.securityfocus.com/bid/31528
http://www.vupen.com/english/advisories/2008/2713
http://secunia.com/advisories/32078
http://www.layereddefense.com/netscreen01oct.html
http://www.securityfocus.com/bid/31528
http://www.vupen.com/english/advisories/2008/2713