Published: 23/08/2005 Updated: 18/10/2016

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Behavioral discrepancy information leak in Juniper Netscreen VPN running ScreenOS 5.2.0 and previous versions, when using IKE with pre-shared key authentication, allows remote malicious users to enumerate valid usernames via an IKE Aggressive Mode packet, which generates a response if the username is valid but does not respond when the username is invalid.

Vulnerable Product	Search on Vulmon	Subscribe to Product
neoteris instant virtual extranet 3.2
neoteris instant virtual extranet 3.3
neoteris instant virtual extranet 3.0
neoteris instant virtual extranet 3.1
neoteris instant virtual extranet 3.3.1
juniper netscreen screenos 1.64
juniper netscreen screenos 1.66
juniper netscreen screenos 2.1_r6
juniper netscreen screenos 2.1_r7
juniper netscreen screenos 2.6.1
juniper netscreen screenos 2.6.1r1
juniper netscreen screenos 2.6.1r5
juniper netscreen screenos 2.6.1r6
juniper netscreen screenos 2.7.1r3
juniper netscreen screenos 2.8
juniper netscreen screenos 3.0.1r1
juniper netscreen screenos 3.0.1r2
juniper netscreen screenos 3.0.3
juniper netscreen screenos 3.0.3_r1.1
juniper netscreen screenos 3.0.3r7
juniper netscreen screenos 3.0.3r8
juniper netscreen screenos 3.1.0r4
juniper netscreen screenos 3.1.0r5
juniper netscreen screenos 4.0.0
juniper netscreen screenos 4.0.0r1
juniper netscreen screenos 4.0.0r5
juniper netscreen screenos 4.0.0r6
juniper netscreen screenos 4.0.0r7
juniper netscreen screenos 4.0.1r3
juniper netscreen screenos 4.0.1r4
juniper netscreen screenos 4.0.3
juniper netscreen screenos 4.0.3r1
netscreen ns-10
netscreen ns-100 3.0_.pe1.0
juniper netscreen screenos 1.73_r1
juniper netscreen screenos 1.73_r2
juniper netscreen screenos 2.5
juniper netscreen screenos 2.5r1
juniper netscreen screenos 2.5r2
juniper netscreen screenos 2.6.1r12
juniper netscreen screenos 2.6.1r2
juniper netscreen screenos 2.6.1r9
juniper netscreen screenos 2.7.1
juniper netscreen screenos 3.0.0r2
juniper netscreen screenos 3.0.0r3
juniper netscreen screenos 3.0.1r5
juniper netscreen screenos 3.0.1r6
juniper netscreen screenos 3.0.3r3
juniper netscreen screenos 3.0.3r4
juniper netscreen screenos 3.1.0r11
juniper netscreen screenos 3.1.0r12
juniper netscreen screenos 3.1.0r8
juniper netscreen screenos 3.1.0r9
juniper netscreen screenos 4.0.0r12
juniper netscreen screenos 4.0.0r2
juniper netscreen screenos 4.0.1
juniper netscreen screenos 4.0.1r1
juniper netscreen screenos 4.0.1r7
juniper netscreen screenos 4.0.1r8
juniper netscreen screenos 4.0.3r4
juniper netscreen screenos 5.0.0
juniper netscreen screenos 1.66_r2
juniper netscreen screenos 1.7
juniper netscreen screenos 2.10_r3
juniper netscreen screenos 2.10_r4
juniper netscreen screenos 2.6.1r10
juniper netscreen screenos 2.6.1r11
juniper netscreen screenos 2.6.1r7
juniper netscreen screenos 2.6.1r8
juniper netscreen screenos 2.8_r1
juniper netscreen screenos 3.0.0
juniper netscreen screenos 3.0.0r1
juniper netscreen screenos 3.0.1r3
juniper netscreen screenos 3.0.1r4
juniper netscreen screenos 3.0.3r1
juniper netscreen screenos 3.0.3r2
juniper netscreen screenos 3.1.0
juniper netscreen screenos 3.1.0r1
juniper netscreen screenos 3.1.0r10
juniper netscreen screenos 3.1.0r6
juniper netscreen screenos 3.1.0r7
juniper netscreen screenos 4.0.0r10
juniper netscreen screenos 4.0.0r11
juniper netscreen screenos 4.0.0r8
juniper netscreen screenos 4.0.0r9
juniper netscreen screenos 4.0.1r5
juniper netscreen screenos 4.0.1r6
juniper netscreen screenos 4.0.3r2
juniper netscreen screenos 4.0.3r3
netscreen ns-204 0110.0_11_4.0_r10.0
netscreen ns-204 0110.0_11_5.1.0_r3a
netscreen ns-204 5.0.0_r6.0
netscreen ns-500 4110.0_11_4.0_r10.0
juniper netscreen screenos 2.0.1_r8
juniper netscreen screenos 2.1
juniper netscreen screenos 2.5r6
juniper netscreen screenos 2.6.0
juniper netscreen screenos 2.6.1r3
juniper netscreen screenos 2.6.1r4
juniper netscreen screenos 2.7.1r1
juniper netscreen screenos 2.7.1r2
juniper netscreen screenos 3.0.0r4
juniper netscreen screenos 3.0.1
juniper netscreen screenos 3.0.1r7
juniper netscreen screenos 3.0.2
juniper netscreen screenos 3.0.3r5
juniper netscreen screenos 3.0.3r6
juniper netscreen screenos 3.1.0r2
juniper netscreen screenos 3.1.0r3
juniper netscreen screenos 3.1.1_r2
juniper netscreen screenos 4.0.0r3
juniper netscreen screenos 4.0.0r4
juniper netscreen screenos 4.0.1r10
juniper netscreen screenos 4.0.1r2
juniper netscreen screenos 4.0.1r9
juniper netscreen screenos 4.0.2
juniper netscreen screenos 5.1.0
juniper netscreen screenos 5.1.0r3a
juniper netscreen screenos 5.2.0
netscreen ns-500 4110.0_11_5.1.0_r3a
netscreen ns-50ns25 5.0.0_r6.0
juniper netscreen-5gt 5.0
juniper netscreen-idp 500 3.0.1_r1
netscreen netscreen-sa 5000 series
juniper netscreen-idp 3.0
juniper netscreen-idp 3.0r1
netscreen netscreen-sa 5020 series 4.2_r2.2
netscreen netscreen-sa 5050 series 4.2_r2.2
juniper netscreen-idp 3.0r2
juniper netscreen-idp 10 3.0.1_r1
juniper netscreen-idp 100 3.0.1_r1
juniper netscreen-idp 1000 3.0.1_r1

source: wwwsecurityfocuscom/bid/14595/info The Juniper Netscreen VPN implementation will identify valid usernames in IKE aggressive mode, when pre-shared key authentication is used This allows for attackers to obtain a list of valid VPN users With a valid username, an attacker can obtain hashed credentials against which a brute force at ...

NVD-CWE-Other http://www.nta-monitor.com/news/vpn-flaws/juniper/netscreen/index.htm http://www.securityfocus.com/bid/14595 http://secunia.com/advisories/16474/http://securitytracker.com/id?1014728 http://marc.info/?l=bugtraq&m=112438068426034&w=2 https://nvd.nist.gov https://www.exploit-db.com/exploits/26168/

Get Started

CVE-2005-2640

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect