CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
91.0%
Behavioral discrepancy information leak in Juniper Netscreen VPN running ScreenOS 5.2.0 and earlier, when using IKE with pre-shared key authentication, allows remote attackers to enumerate valid usernames via an IKE Aggressive Mode packet, which generates a response if the username is valid but does not respond when the username is invalid.
Vendor | Product | Version | CPE |
---|---|---|---|
neoteris | instant_virtual_extranet | 3.0 | cpe:2.3:a:neoteris:instant_virtual_extranet:3.0:*:*:*:*:*:*:* |
neoteris | instant_virtual_extranet | 3.1 | cpe:2.3:a:neoteris:instant_virtual_extranet:3.1:*:*:*:*:*:*:* |
neoteris | instant_virtual_extranet | 3.2 | cpe:2.3:a:neoteris:instant_virtual_extranet:3.2:*:*:*:*:*:*:* |
neoteris | instant_virtual_extranet | 3.3 | cpe:2.3:a:neoteris:instant_virtual_extranet:3.3:*:*:*:*:*:*:* |
neoteris | instant_virtual_extranet | 3.3.1 | cpe:2.3:a:neoteris:instant_virtual_extranet:3.3.1:*:*:*:*:*:*:* |
juniper | netscreen_screenos | 1.7 | cpe:2.3:o:juniper:netscreen_screenos:1.7:*:*:*:*:*:*:* |
juniper | netscreen_screenos | 1.64 | cpe:2.3:o:juniper:netscreen_screenos:1.64:*:*:*:*:*:*:* |
juniper | netscreen_screenos | 1.66 | cpe:2.3:o:juniper:netscreen_screenos:1.66:*:*:*:*:*:*:* |
juniper | netscreen_screenos | 1.66_r2 | cpe:2.3:o:juniper:netscreen_screenos:1.66_r2:*:*:*:*:*:*:* |
juniper | netscreen_screenos | 1.73_r1 | cpe:2.3:o:juniper:netscreen_screenos:1.73_r1:*:*:*:*:*:*:* |