CVE-2017-2321

Summary

A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unauthenticated, unprivileged, network-based attacker to cause various system services partial to full denials of services, modification of system states and files, and potential disclosure of sensitive information which may assist the attacker in further attacks on the system through the use of multiple attack vectors, including man-in-the-middle attacks, file injections, and malicious execution of commands causing out of bound memory conditions leading to other attacks.

Affected Software

VendorProductVersion RangeStatus
Juniper NetworksNorthStar Controller Applicationprior to version 2.1.0 Service Pack 1affected

Weaknesses

  • denials of services, modification of system states and files, and potential disclosure of sensitive information

ADP Enrichment

CVE Program Container

Additional References

References