cancel
Showing results for 
Search instead for 
Did you mean: 

Is SA vulnerable to CVE 2014-6271?

flip_pipe_
Frequent Contributor

Re: Is SA vulnerable to CVE 2014-6271?

Hi,

 

JSA10648 can be true regarding the public facing interfaces with the world, but is not true regarding one administrative interface.

 

I've an open case, so If Juniper ask me what I have found, I will respond to that and I will not publish more stuff in the forum.

 

Juniper should know better how their systems realy work and not cover the sun with a sieve.

 

As administrator of SA, I'm not worried about this flaw... I'm have good time with it Smiley Happy

 

Regards,

Kita_
Valued Contributor

Re: Is SA vulnerable to CVE 2014-6271?

Antioch_
Contributor

Re: Is SA vulnerable to CVE 2014-6271?

Whats the time frame for patching this? I know with the transition to the new company there are going to be some shakeups, but regardless of how serious Juniper (or pulse secure) considers this; patching this vulnerability should happen immediately.
Antioch_
Contributor

Re: Is SA vulnerable to CVE 2014-6271?

Not letting this leave the front page until its patched. Any updates on when Bash will be updated?
Antioch_
Contributor

Re: Is SA vulnerable to CVE 2014-6271?

IT appears that as of 8.0R7 (at least for the mag series) this vulnerability has been addressed and fixed.