CVE-2002-0891

Name: CVE-2002-0891
Creator: NVD / NIST
Published: 2002-10-04T04:00:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 1.63%

Last modified Jun 16, 2026

CVE-2002-0891 is a vulnerability of currently unknown severity. The web interface (WebUI) of NetScreen ScreenOS before 2.6.1r8, and certain 2.8.x and 3.0.x versions before 3.0.3r1, allows remote attackers to cause a denial of service (crash) via a long user name.. EPSS estimates a 1.63% chance of exploitation in the next 30 days.

Description

The web interface (WebUI) of NetScreen ScreenOS before 2.6.1r8, and certain 2.8.x and 3.0.x versions before 3.0.3r1, allows remote attackers to cause a denial of service (crash) via a long user name.

Metrics

EPSS Probability

1.63%

73.2th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions
Juniper	Netscreen Screenos	2.5
Juniper	Netscreen Screenos	2.5r1
Juniper	Netscreen Screenos	2.5r2
Juniper	Netscreen Screenos	2.5r6
Juniper	Netscreen Screenos	2.6.1
Juniper	Netscreen Screenos	2.6.1r1
Juniper	Netscreen Screenos	2.6.1r2
Juniper	Netscreen Screenos	2.6.1r3
Juniper	Netscreen Screenos	2.6.1r4
Juniper	Netscreen Screenos	2.6.1r5
Juniper	Netscreen Screenos	2.7.1
Juniper	Netscreen Screenos	2.7.1r1
Juniper	Netscreen Screenos	2.7.1r2
Juniper	Netscreen Screenos	2.7.1r3
Juniper	Netscreen Screenos	2.8_r1
Juniper	Netscreen Screenos	2.10_r3
Juniper	Netscreen Screenos	2.10_r4
Juniper	Netscreen Screenos	3.0.0
Juniper	Netscreen Screenos	3.0.0r1
Juniper	Netscreen Screenos	3.0.0r2
Juniper	Netscreen Screenos	3.0.0r3
Juniper	Netscreen Screenos	3.0.0r4
Juniper	Netscreen Screenos	3.0.1r1

References

http://online.securityfocus.com/archive/1/274240
http://www.iss.net/security_center/static/9186.phpVendor Advisory
http://www.netscreen.com/support/ns25_reboot.html
http://www.securityfocus.com/bid/4842Vendor Advisory
http://online.securityfocus.com/archive/1/274240
http://www.iss.net/security_center/static/9186.phpVendor Advisory
http://www.netscreen.com/support/ns25_reboot.html
http://www.securityfocus.com/bid/4842Vendor Advisory

Timeline

Published: Oct 4, 2002
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2002-0891?

The web interface (WebUI) of NetScreen ScreenOS before 2.6.1r8, and certain 2.8.x and 3.0.x versions before 3.0.3r1, allows remote attackers to cause a denial of service (crash) via a long user name.

How severe is CVE-2002-0891?

Severity scoring for CVE-2002-0891 is pending analysis. The EPSS model estimates a 1.63% probability of exploitation in the next 30 days.

How do I fix CVE-2002-0891?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2002-0891?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST