Sign-up

ID

VAR-201707-0306


CVE

CVE-2017-2336


TITLE

Multiple cross-site scripting vulnerabilities in ScreenOS

Trust: 0.8

sources: JVNDB: JVNDB-2017-000183

DESCRIPTION

A reflected cross site scripting vulnerability in NetScreen WebUI of Juniper Networks Juniper NetScreen Firewall+VPN running ScreenOS allows a network based attacker to inject HTML/JavaScript content into the management session of other users including the administrator. This enables the attacker to effectively execute commands with the permissions of an administrator. This issue affects Juniper Networks ScreenOS 6.3.0 releases prior to 6.3.0r24 on SSG Series. No other Juniper Networks products or platforms are affected by this issue. ScreenOS provided by Juniper Networks contains multiple cross-site scripting vulnerabilities. Toshitsugu Yoneyama and Gaku Mochizuki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. An arbitrary script may be executed on the logged in user's web browser. Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or control how the site is rendered to the user. Other attacks are also possible. ScreenOS is one of those operating systems

Trust: 1.98

sources: NVD: CVE-2017-2336 // JVNDB: JVNDB-2017-000183 // BID: 99590 // VULHUB: VHN-110539

AFFECTED PRODUCTS

vendor:junipermodel:screenosscope:eqversion:6.3.0

Trust: 1.6

vendor:junipermodel:screenosscope:eqversion:prior to 6.3.0r24

Trust: 0.8

vendor:junipermodel:screenos 6.3.0r22scope: - version: -

Trust: 0.3

vendor:junipermodel:screenos 6.3.0r21scope: - version: -

Trust: 0.3

vendor:junipermodel:screenos 6.3.0r20scope: - version: -

Trust: 0.3

vendor:junipermodel:screenos 6.3.0r19scope: - version: -

Trust: 0.3

vendor:junipermodel:screenos 6.3.0r13scope: - version: -

Trust: 0.3

vendor:junipermodel:screenos 6.3.0r12scope: - version: -

Trust: 0.3

vendor:junipermodel:screenos 6.3.0r24scope:neversion: -

Trust: 0.3

sources: BID: 99590 // JVNDB: JVNDB-2017-000183 // CNNVD: CNNVD-201707-626 // NVD: CVE-2017-2336

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-2336
value: MEDIUM

Trust: 1.0

sirt@juniper.net: CVE-2017-2336
value: CRITICAL

Trust: 1.0

VENDOR: JVNDB-2017-000183
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201707-626
value: LOW

Trust: 0.6

VULHUB: VHN-110539
value: LOW

Trust: 0.1

nvd@nist.gov: CVE-2017-2336
severity: LOW
baseScore: 3.5
vectorString: AV:N/AC:M/AU:S/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 6.8
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VENDOR: JVNDB-2017-000183
severity: MEDIUM
baseScore: 4.0
vectorString: AV:N/AC:L/AU:S/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.8

VULHUB: VHN-110539
severity: LOW
baseScore: 3.5
vectorString: AV:N/AC:M/AU:S/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 6.8
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-2336
baseSeverity: MEDIUM
baseScore: 5.4
vectorString: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: REQUIRED
scope: CHANGED
confidentialityImpact: LOW
integrityImpact: LOW
availabilityImpact: NONE
exploitabilityScore: 2.3
impactScore: 2.7
version: 3.0

Trust: 1.0

sirt@juniper.net: CVE-2017-2336
baseSeverity: CRITICAL
baseScore: 9.6
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: REQUIRED
scope: CHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 2.8
impactScore: 6.0
version: 3.0

Trust: 1.0

VENDOR: JVNDB-2017-000183
baseSeverity: HIGH
baseScore: 8.4
vectorString: CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: REQUIRED
scope: CHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: VULHUB: VHN-110539 // JVNDB: JVNDB-2017-000183 // CNNVD: CNNVD-201707-626 // NVD: CVE-2017-2336 // NVD: CVE-2017-2336

PROBLEMTYPE DATA

problemtype:CWE-79

Trust: 1.9

sources: VULHUB: VHN-110539 // JVNDB: JVNDB-2017-000183 // NVD: CVE-2017-2336

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201707-626

TYPE

XSS

Trust: 0.6

sources: CNNVD: CNNVD-201707-626

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-000183

PATCH
title:2017-07 Security Bulletin: ScreenOS: Multiple XSS vulnerabilities in ScreenOS Firewallurl:https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10782&actp=METADATA
Trust: 0.8
title:Juniper SSG Series device ScreenOS Fixes for cross-site scripting vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=71744
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2017-000183 // 
            
            
            
            CNNVD: CNNVD-201707-626

EXTERNAL IDS
db:NVDid:CVE-2017-2336
Trust: 2.8
db:JUNIPERid:JSA10782
Trust: 2.0
db:SECTRACKid:1038881
Trust: 1.7
db:BIDid:99590
Trust: 1.4
db:JVNid:JVN74247807
Trust: 0.8
db:JVNDBid:JVNDB-2017-000183
Trust: 0.8
db:CNNVDid:CNNVD-201707-626
Trust: 0.7
db:VULHUBid:VHN-110539
Trust: 0.1
sources:
            
            
            VULHUB: VHN-110539 // 
            
            
            
            BID: 99590 // 
            
            
            
            JVNDB: JVNDB-2017-000183 // 
            
            
            
            CNNVD: CNNVD-201707-626 // 
            
            
            
            NVD: CVE-2017-2336

REFERENCES
url:https://kb.juniper.net/jsa10782
Trust: 1.7
url:http://www.securityfocus.com/bid/99590
Trust: 1.1
url:http://www.securitytracker.com/id/1038881
Trust: 1.1
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-2338
Trust: 0.8
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-2339
Trust: 0.8
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-2335
Trust: 0.8
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-2336
Trust: 0.8
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-2337
Trust: 0.8
url:https://jvn.jp/en/jp/jvn74247807/index.html
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-2335
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-2336
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-2337
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-2338
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-2339
Trust: 0.8
url:http://securitytracker.com/id/1038881
Trust: 0.6
url:http://www.juniper.net/
Trust: 0.3
url:https://kb.juniper.net/infocenter/index?page=content&id=jsa10782&actp=rss
Trust: 0.3
sources:
            
            
            VULHUB: VHN-110539 // 
            
            
            
            BID: 99590 // 
            
            
            
            JVNDB: JVNDB-2017-000183 // 
            
            
            
            CNNVD: CNNVD-201707-626 // 
            
            
            
            NVD: CVE-2017-2336

CREDITS
Gaku Mochizuki/Toshitsugu Yoneyama from Mitsui Bussan Secure Directions, Inc.
Trust: 0.3
sources:
            
            
            BID: 99590

SOURCES
db:VULHUBid:VHN-110539
db:BIDid:99590
db:JVNDBid:JVNDB-2017-000183
db:CNNVDid:CNNVD-201707-626
db:NVDid:CVE-2017-2336

LAST UPDATE DATE
2024-11-23T22:07:20.296000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-110539date:2017-07-22T00:00:00
db:BIDid:99590date:2017-07-14T00:00:00
db:JVNDBid:JVNDB-2017-000183date:2017-08-09T00:00:00
db:CNNVDid:CNNVD-201707-626date:2017-07-19T00:00:00
db:NVDid:CVE-2017-2336date:2024-11-21T03:23:18.687

SOURCES RELEASE DATE
db:VULHUBid:VHN-110539date:2017-07-17T00:00:00
db:BIDid:99590date:2017-07-14T00:00:00
db:JVNDBid:JVNDB-2017-000183date:2017-07-24T00:00:00
db:CNNVDid:CNNVD-201707-626date:2017-07-19T00:00:00
db:NVDid:CVE-2017-2336date:2017-07-17T13:18:23.987