Информационная безопасность
[RU] switch to English


Уязвимости безопасности в Citrix NetScaler
Опубликовано:21 июля 2014 г.
Источник:
SecurityVulns ID:13877
Тип:удаленная
Уровень опасности:
5/10
Описание:Утечка информации, XSS.
Затронутые продукты:CITRIX : NetScaler 10.1
CVE:CVE-2014-4347 (Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway (formerly Access Gateway Enterprise Edition) before 9.3-62.4 and 10.x before 10.1-126.12 allows attackers to obtain sensitive information via vectors related to a cookie.)
 CVE-2014-4346 (Cross-site scripting (XSS) vulnerability in administration user interface in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway (formerly Access Gateway Enterprise Edition) 10.1 before 10.1-126.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.)
Оригинальный текстdocumentSEC Consult Vulnerability Lab, SEC Consult SA-20140716-2 :: Multiple vulnerabilities in Citrix NetScaler Application Delivery Controller and Citrix NetScaler Gateway (21.07.2014)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород