• 0

A Systematic Analysis of the Juniper Dual EC Incident  eprint.iacr.org

2016-04-26 07:00:59 in Whitepapers and Videos by Red Letter Security

"In December 2015, Juniper Networks announced that unknown attackers had added unauthorized code to ScreenOS, the operating system for their NetScreen VPN routers. This code created two vulnerabilities: an authentication bypass that enabled remote administrative access, and a second vulnerability that allowed passive decryption of VPN traffic"