N/A

An issue was discovered in Pulse Policy Secure (PPS) and Pulse Connect Secure (PCS) Virtual Appliance before 9.1R8. By manipulating a certain kernel boot parameter, it can be tricked into dropping into a root shell in a pre-install phase where the entire source code of the appliance is available and can be retrieved. (The source code is otherwise inaccessible because the appliance has its hard disks encrypted, and no root shell is available during normal operation.)

N/A

N/A

Pulse Secure Pulse Connect Secure和Pulse Policy Secure 信息泄露漏洞

Pulse Secure Pulse Connect Secure（又名PCS，前称Juniper Junos Pulse）和Pulse Policy Secure都是美国Pulse Secure公司的产品。Pulse Connect Secure是一套SSL VPN解决方案。Pulse Policy Secure是一套网络准入控制解决方案。 Pulse Secure Pulse Connect Secure 9.1R8之前版本和Pulse Policy Secure 9.1R8之前版本中存在安全漏洞。攻

N/A

N/A