[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[CVE-2015-7755] Backdoor in Juniper/ScreenOS

Subject: [CVE-2015-7755] Backdoor in Juniper/ScreenOS
From: bortzmeyer at nic.fr (Stephane Bortzmeyer)
Date: Fri, 18 Dec 2015 09:28:11 +0100

http://forums.juniper.net/t5/Security-Incident-Response/Important-Announcement-about-ScreenOS/ba-p/285554
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10713&cat=SIRT_1&actp=LIST

Should we blame Juniper for letting a git repository open to
"unauthorized code" or should we congratulate them for their frankness
(few corporations would have admitted the problem)?

Follow-Ups:
- [CVE-2015-7755] Backdoor in Juniper/ScreenOS
  - From: karsten_thomann at linfre.de (Karsten Thomann)
- [CVE-2015-7755] Backdoor in Juniper/ScreenOS
  - From: bortzmeyer at nic.fr (Stephane Bortzmeyer)
- [CVE-2015-7755] Backdoor in Juniper/ScreenOS
  - From: dougb at dougbarton.us (Doug Barton)

Prev by Date: ISP marking ipsec traffic based on certificate, how is this possible?
Next by Date: [CVE-2015-7755] Backdoor in Juniper/ScreenOS
Previous by thread: [NANOG] IPv4 subnets for lease?
Next by thread: [CVE-2015-7755] Backdoor in Juniper/ScreenOS
Index(es):
- Date
- Thread