The Pulse Secure Blog

With amazing response time, Juniper's engineering and support organizations have quickly provided new releases of Pulse Desktop, Secure Access (SA) Service, and Infranet Controller/Unified Access Control (IC/UAC) to address the June 5, 2014 OpenSSL vulnerability CVE-2014-0224.

CVE-2014-0224 is a man-in-the-middle type of attack that could allow a hacker to eavesdrop on a secure connection. Juniper offers a knowledge-base article (KB29195) for more information on the vulnerability.

The images that contain the relevant changes (and the corresponding Release Notes) can be found using the links below:

• Pulse Desktop 5.0r4.1 and 4.0r11.1
• SA 8.0r4.1 and 7.4r11.1
• IC/UAC 5.0r4.1 and 4.4r11.1

Great teamwork from the entire Pulse organization!