News Stay informed about the latest enterprise technology news and product updates.

Flaw found in NetScreen Security Manager

A flaw in NetScreen Security Manager needs manual updating until a service pack is released. The vulnerability could expose valuable information to attackers.

Administrators need to manually fix a vulnerability in NetScreen Security Manager until the company issues a service...

pack. Unless fixed, communication between Security Manager and devices running ScreenOS 5.0 is in clear text, exposing potentially valuable information to an attacker.

NetScreen has issued an advisory about its Security Manager 2004. The product provides management of device configuration, network settings, administrative roles and security policies. The default configuration doesn't specify encryption for communications between Security Manager and network devices running ScreenOS 5.0. A local user who could eavesdrop on the traffic would see all data in cleartext and could obtain system information or sensitive information.

NetScreen plans to fix the problem in NetScreen Security Manager 2004 Feature Pack 1. Until then, administrators can edit a configuration file to specify encryption, or run a script.

Dig Deeper on Risk assessments, metrics and frameworks



Find more PRO+ content and other member only offers, here.

Start the conversation

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.







  • CIO Trends #6: Nordics

    In this e-guide, read how the High North and Baltic Sea collaboration is about to undergo a serious and redefining makeover to ...

  • CIO Trends #6: Middle East

    In this e-guide we look at the role of information technology as the Arabian Gulf commits billions of dollars to building more ...

  • CIO Trends #6: Benelux

    In this e-guide, read about the Netherlands' coalition government's four year plan which includes the term 'cyber' no fewer than ...