Security, Access, and Acceleration Advisories Released

latforms Affected Junos Pulse ScreenOS 5.x Security ScreenOS 6.x SIRT Security Advisory IVE OS 7.x vGW Series Revision Number 7 Issue Date 2013-03-13

PSN Issue : A new Security, Access, and Acceleration product security advisory bundle has been released. This message contains the link(s) to the new PSN advisories that have been released. In the interest of speeding the delivery process for SIRT Security Announcements, the Juniper SIRT has implemented a small process change. When the Juniper SIRT publishes Security Advisories and/or Security Notices, a single master PSN (this PSN) will be pushed to subscribed customers which briefly lists the IDs, descriptions, and links for all of the individual Security Announcements being released together on that day. Solution: Please see the following links for more information about the new security advisories: PSN-2013-03-872: NetScreen Firewall: OpenSSL vulnerability in ScreenOS (CVE-2012-2110) http://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2013-03-872&viewMode=view PSN-2013-03-873: Junos Pulse: Android client privilege escalation http://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2013-03-873&viewMode=view PSN-2013-03-874: Junos Pulse Secure Access Service (SSL VPN): Multiple cross site scripting issues http://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2013-03-874&viewMode=view PSN-2013-03-875: vGW: IPv6 Connection allowed when it should have been rejected by a network object and/or SRX zone. http://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2013-03-875&viewMode=view