CVE-2005-2640

Description

Behavioral discrepancy information leak in Juniper Netscreen VPN running ScreenOS 5.2.0 and earlier, when using IKE with pre-shared key authentication, allows remote attackers to enumerate valid usernames via an IKE Aggressive Mode packet, which generates a response if the username is valid but does not respond when the username is invalid.

Affected products

• Juniper / netscreen-5gt5.0 – 5.0
• Juniper / netscreen-idp3.0r1 – 3.0r1
• Juniper / netscreen-idp3.0 – 3.0
• Juniper / netscreen-idp3.0r2 – 3.0r2
• Juniper / netscreen-idp_103.0.1_r1 – 3.0.1_r1
• Juniper / netscreen-idp_1003.0.1_r1 – 3.0.1_r1
• Juniper / netscreen-idp_10003.0.1_r1 – 3.0.1_r1
• Juniper / netscreen-idp_5003.0.1_r1 – 3.0.1_r1
• Juniper / netscreen_screenos2.1 – 2.1
• Juniper / netscreen_screenos2.1_r6 – 2.1_r6
• Juniper / netscreen_screenos2.1_r7 – 2.1_r7
• Juniper / netscreen_screenos2.5 – 2.5
• Juniper / netscreen_screenos2.5r1 – 2.5r1
• Juniper / netscreen_screenos2.5r2 – 2.5r2
• Juniper / netscreen_screenos2.5r6 – 2.5r6
• Juniper / netscreen_screenos2.6.0 – 2.6.0
• Juniper / netscreen_screenos2.6.1 – 2.6.1
• Juniper / netscreen_screenos2.6.1r1 – 2.6.1r1
• Juniper / netscreen_screenos2.6.1r2 – 2.6.1r2
• Juniper / netscreen_screenos2.6.1r3 – 2.6.1r3
• Juniper / netscreen_screenos2.6.1r4 – 2.6.1r4
• Juniper / netscreen_screenos2.6.1r5 – 2.6.1r5
• Juniper / netscreen_screenos2.6.1r6 – 2.6.1r6
• Juniper / netscreen_screenos2.6.1r7 – 2.6.1r7
• Juniper / netscreen_screenos2.6.1r8 – 2.6.1r8
• Juniper / netscreen_screenos2.6.1r9 – 2.6.1r9
• Juniper / netscreen_screenos2.6.1r10 – 2.6.1r10
• Juniper / netscreen_screenos2.6.1r11 – 2.6.1r11
• Juniper / netscreen_screenos2.7.1 – 2.7.1
• Juniper / netscreen_screenos2.7.1r1 – 2.7.1r1
• Juniper / netscreen_screenos2.7.1r2 – 2.7.1r2
• Juniper / netscreen_screenos2.7.1r3 – 2.7.1r3
• Juniper / netscreen_screenos2.8 – 2.8
• Juniper / netscreen_screenos2.8_r1 – 2.8_r1
• Juniper / netscreen_screenos2.10_r3 – 2.10_r3
• Juniper / netscreen_screenos2.10_r4 – 2.10_r4
• Juniper / netscreen_screenos3.0.0 – 3.0.0
• Juniper / netscreen_screenos3.0.0r1 – 3.0.0r1
• Juniper / netscreen_screenos3.0.0r2 – 3.0.0r2
• Juniper / netscreen_screenos3.0.0r3 – 3.0.0r3
• Juniper / netscreen_screenos3.0.0r4 – 3.0.0r4
• Juniper / netscreen_screenos3.0.1 – 3.0.1
• Juniper / netscreen_screenos3.0.1r1 – 3.0.1r1
• Juniper / netscreen_screenos3.0.1r2 – 3.0.1r2
• Juniper / netscreen_screenos3.0.1r3 – 3.0.1r3
• Juniper / netscreen_screenos3.0.1r4 – 3.0.1r4
• Juniper / netscreen_screenos3.0.1r5 – 3.0.1r5
• Juniper / netscreen_screenos3.0.1r6 – 3.0.1r6
• Juniper / netscreen_screenos3.0.1r7 – 3.0.1r7
• Juniper / netscreen_screenos3.0.2 – 3.0.2
• Juniper / netscreen_screenos3.0.3 – 3.0.3
• Juniper / netscreen_screenos3.0.3_r1.1 – 3.0.3_r1.1
• Juniper / netscreen_screenos3.0.3r1 – 3.0.3r1
• Juniper / netscreen_screenos3.0.3r2 – 3.0.3r2
• Juniper / netscreen_screenos3.0.3r3 – 3.0.3r3
• Juniper / netscreen_screenos3.0.3r4 – 3.0.3r4
• Juniper / netscreen_screenos3.0.3r5 – 3.0.3r5
• Juniper / netscreen_screenos3.0.3r6 – 3.0.3r6
• Juniper / netscreen_screenos3.0.3r7 – 3.0.3r7
• Juniper / netscreen_screenos3.0.3r8 – 3.0.3r8
• Juniper / netscreen_screenos3.1.0 – 3.1.0
• Juniper / netscreen_screenos3.1.0r1 – 3.1.0r1
• Juniper / netscreen_screenos3.1.0r2 – 3.1.0r2
• Juniper / netscreen_screenos3.1.0r3 – 3.1.0r3
• Juniper / netscreen_screenos3.1.0r4 – 3.1.0r4
• Juniper / netscreen_screenos3.1.0r5 – 3.1.0r5
• Juniper / netscreen_screenos3.1.0r6 – 3.1.0r6
• Juniper / netscreen_screenos3.1.0r7 – 3.1.0r7
• Juniper / netscreen_screenos3.1.0r8 – 3.1.0r8
• Juniper / netscreen_screenos3.1.0r9 – 3.1.0r9
• Juniper / netscreen_screenos3.1.0r10 – 3.1.0r10
• Juniper / netscreen_screenos3.1.0r11 – 3.1.0r11
• Juniper / netscreen_screenos3.1.0r12 – 3.1.0r12
• Juniper / netscreen_screenos3.1.1_r2 – 3.1.1_r2
• Juniper / netscreen_screenos4.0.0 – 4.0.0
• Juniper / netscreen_screenos4.0.0 – 4.0.0
• Juniper / netscreen_screenos4.0.0r1 – 4.0.0r1
• Juniper / netscreen_screenos4.0.0r2 – 4.0.0r2
• Juniper / netscreen_screenos4.0.0r3 – 4.0.0r3
• Juniper / netscreen_screenos4.0.0r4 – 4.0.0r4
• Juniper / netscreen_screenos4.0.0r5 – 4.0.0r5
• Juniper / netscreen_screenos4.0.0r6 – 4.0.0r6
• Juniper / netscreen_screenos4.0.0r7 – 4.0.0r7
• Juniper / netscreen_screenos4.0.0r8 – 4.0.0r8
• Juniper / netscreen_screenos4.0.0r9 – 4.0.0r9
• Juniper / netscreen_screenos4.0.0r10 – 4.0.0r10
• Juniper / netscreen_screenos4.0.0r11 – 4.0.0r11
• Juniper / netscreen_screenos4.0.0r12 – 4.0.0r12
• Juniper / netscreen_screenos4.0.1 – 4.0.1
• Juniper / netscreen_screenos4.0.1r1 – 4.0.1r1
• Juniper / netscreen_screenos4.0.1r2 – 4.0.1r2
• Juniper / netscreen_screenos4.0.1r3 – 4.0.1r3
• Juniper / netscreen_screenos4.0.1r4 – 4.0.1r4
• Juniper / netscreen_screenos4.0.1r5 – 4.0.1r5
• Juniper / netscreen_screenos4.0.1r6 – 4.0.1r6
• Juniper / netscreen_screenos4.0.1r7 – 4.0.1r7
• Juniper / netscreen_screenos4.0.1r8 – 4.0.1r8
• Juniper / netscreen_screenos4.0.1r9 – 4.0.1r9
• Juniper / netscreen_screenos4.0.1r10 – 4.0.1r10
• Juniper / netscreen_screenos4.0.2 – 4.0.2
• Juniper / netscreen_screenos4.0.3 – 4.0.3
• Juniper / netscreen_screenos4.0.3r1 – 4.0.3r1
• Juniper / netscreen_screenos4.0.3r2 – 4.0.3r2
• Juniper / netscreen_screenos4.0.3r3 – 4.0.3r3
• Juniper / netscreen_screenos4.0.3r4 – 4.0.3r4
• Juniper / netscreen_screenos5.0.0 – 5.0.0
• Juniper / netscreen_screenos5.1.0 – 5.1.0
• Juniper / netscreen_screenos5.1.0r3a – 5.1.0r3a
• Juniper / netscreen_screenos5.2.0 – 5.2.0
• Juniper / netscreen_screenos2.6.1r12 – 2.6.1r12
• Juniper / netscreen_screenos1.7 – 1.7
• Juniper / netscreen_screenos1.64 – 1.64
• Juniper / netscreen_screenos1.66 – 1.66
• Juniper / netscreen_screenos1.66_r2 – 1.66_r2
• Juniper / netscreen_screenos1.73_r1 – 1.73_r1
• Juniper / netscreen_screenos1.73_r2 – 1.73_r2
• Juniper / netscreen_screenos2.0.1_r8 – 2.0.1_r8
• neoteris / instant_virtual_extranet3.1 – 3.1
• neoteris / instant_virtual_extranet3.3 – 3.3
• neoteris / instant_virtual_extranet3.3.1 – 3.3.1
• neoteris / instant_virtual_extranet3.0 – 3.0
• neoteris / instant_virtual_extranet3.2 – 3.2
• netscreen / netscreen-sa_5000_series
• netscreen / netscreen-sa_5020_series4.2_r2.2 – 4.2_r2.2
• netscreen / netscreen-sa_5050_series4.2_r2.2 – 4.2_r2.2
• netscreen / ns-10
• netscreen / ns-1003.0_.pe1.0 – 3.0_.pe1.0
• netscreen / ns-2040110.0_11_4.0_r10.0 – 0110.0_11_4.0_r10.0
• netscreen / ns-2045.0.0_r6.0 – 5.0.0_r6.0
• netscreen / ns-2040110.0_11_5.1.0_r3a – 0110.0_11_5.1.0_r3a
• netscreen / ns-5004110.0_11_4.0_r10.0 – 4110.0_11_4.0_r10.0
• netscreen / ns-5004110.0_11_5.1.0_r3a – 4110.0_11_5.1.0_r3a
• netscreen / ns-50ns255.0.0_r6.0 – 5.0.0_r6.0

References

• MISChttp://www.securityfocus.com/bid/14595
• MAILING_LISThttp://marc.info/?l=bugtraq&m=112438068426034&w=2
• MISChttp://www.nta-monitor.com/news/vpn-flaws/juniper/netscreen/index.htm
• MISChttp://securitytracker.com/id?1014728
• VENDOR_ADVISORYhttp://secunia.com/advisories/16474/