Juniper Networks 5XT User Manual
Juniper Networks
NetScreen Release Notes
ScreenOS 5.0.0r9-FIPS
P/N 093-1638-000, Rev. A
Page 13 of 42
• 01998 – You could not save the set console aux disable command into the
device configuration.
• 01739 – Ping operations would not work if fast aging out of MAC addresses
did not occur when a PC migrated from one Juniper NetScreen-5GT port to
another in the same zone.
another in the same zone.
• 01635 – The system failed when an H323 recomputed a UDP checksum; the
UDP packet lengths sometimes were too consistent with the IP lengths.
• 01584 – If a virtual routing instance acted as the ABR (area border router),
then the routing instance did not advertise inter-area summary routes. An
inter-area summary route is one value that encompasses a range of route
prefixes contained in multiple routing areas.
inter-area summary route is one value that encompasses a range of route
prefixes contained in multiple routing areas.
• 01523 – An OSPF virtual routing instance sometimes unexpectedly dropped
routes.
4.2 Addressed Issues from ScreenOS 5.0.0r8
• 40292 – A potential cross-site scripting attack existed in the anti-virus scan
engine when processing compressed files.
• 39458 – You could not configure 16 concurrent anti-virus messages, the
expected maximum number of messages allowed when running the anti-
virus Scan Manager utility in the WebUI.
virus Scan Manager utility in the WebUI.
• 39087 – In certain circumstances, the first attempt to access a TCP
application through a Juniper NetScreen-5000 system with authentication
failed when the ARP entry for the application was not present.
failed when the ARP entry for the application was not present.
• 38193 – A Juniper NetScreen-5GT could not access common public web sites
when an administrator performed an anti-virus scan for HTTP on the device.
The attempted connections will expire after they exceed the time out
threshold for connection attempts.
The attempted connections will expire after they exceed the time out
threshold for connection attempts.
• 37933, 37945 – If a number of different attacks entered the Juniper
NetScreen-5000 Series system over a period of time, the system sometimes
began to drop packets.
began to drop packets.
• 36708 – You could not view the traffic logs for a Vsys if you entered the Vsys
as a root admin user.
• 36670 – You could create more VLANs on a Juniper Networks security
appliance than the number of VLANs the device officially supported.
However, doing this sometimes caused unexpected results. Refer to the
specifications sheet for your NetScreen product to learn how many VLANs it
supports.
However, doing this sometimes caused unexpected results. Refer to the
specifications sheet for your NetScreen product to learn how many VLANs it
supports.
• 36494 – Upon startup, Juniper Networks security appliances using PPPoE
sometimes generated a warning message informing that the interface
gateway command was invalid. This is a result of the gateway changing
gateway command was invalid. This is a result of the gateway changing