[CVE-2015-7755] Backdoor in Juniper/ScreenOS
Stephane Bortzmeyer
bortzmeyer at nic.fr
Mon Dec 21 08:31:37 UTC 2015
On Fri, Dec 18, 2015 at 09:28:11AM +0100,
Stephane Bortzmeyer <bortzmeyer at nic.fr> wrote
a message of 6 lines which said:
> http://forums.juniper.net/t5/Security-Incident-Response/Important-Announcement-about-ScreenOS/ba-p/285554
The password for the first backdoor (the one regarding telnet/SSH
access) has been published recently:
https://community.rapid7.com/community/infosec/blog/2015/12/20/cve-2015-7755-juniper-screenos-authentication-backdoor
Shodan finds 26000 ScreenOS machines reachable from the Internet. It
will be a small botnet :-)
More information about the NANOG
mailing list