Juniper Networks has announced that it has discovered “unauthorized code” in ScreenOS, the operating system for its NetScreen firewalls, that could allow an attacker to decrypt traffic sent through Virtual Private Networks (VPNs).
It’s not clear what caused the code to get there or how long it has been there, but the release notes posted by Juniper suggest the earliest buggy versions of