Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Java vulnerabilities and SSL VPN

VincentM_
Occasional Contributor
‎01-11-2013 01:22:AM
‎01-11-2013 01:22:AM

Java vulnerabilities and SSL VPN

Hi,

 

Day after days, Java seems less secure:

 

Last Year, Java plug-in older than 1.6.0_31 and 1.7.0_2 were automatically blocked by browser (https://addons.mozilla.org/firefox/blocked/p80)

 

Today, It's the turn of Java 1.7.0_10 to be desactivated (http://www.kb.cert.org/vuls/id/625617), and, no patched version is available...

 

 

These issues disable some major SSL VPN feature (JSAM, Network Connect, Meeting...). What can do Juniper to stop using Java for all these features?

 

 

Regards,

 

Vincent

0 Kudos
2 REPLIES 2
zanyterp_
Respected Contributor
‎01-11-2013 04:54:AM
‎01-11-2013 04:54:AM

Re: Java vulnerabilities and SSL VPN

Network Connect: use the installed application only.
JSAM by nature must use Java.
Meeting: enable collaboration on the Pulse config & launch through the Pulse tray
Beyond those, I'm not sure what options are available; this would be a good thing to bring up to your sales team to send to the product team for discussion & response
0 Kudos
michael.saw_
Regular Contributor
‎04-11-2013 11:05:PM
‎04-11-2013 11:05:PM

Re: Java vulnerabilities and SSL VPN

Is there report or document on Juniper SSL VPN vulnerability assessment and penetration testing?
0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.