Информационная безопасность
[RU] switch to English


Уязвимости безопасности в Citrix Netscaler
Опубликовано:7 мая 2014 г.
Источник:
SecurityVulns ID:13752
Тип:удаленная
Уровень опасности:
5/10
Описание:Слабая реализация протокола Диффи-Хелмана, отсутствие проверки сертификата.
Затронутые продукты:CITRIX : NetScaler Application Delivery Controller 10.1
CVE:CVE-2014-2882 (Unspecified vulnerability in the management GUI in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway before 9.3-66.5 and 10.x before 10.1-122.17 has unspecified impact and vectors, related to certificate validation.)
 CVE-2014-2881 (Unspecified vulnerability in the Diffie-Hellman key agreement implementation in the management GUI Java applet in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway before 9.3-66.5 and 10.x before 10.1-122.17 has unknown impact and vectors.)
Оригинальный текстdocumentadvisories_(at)_portcullis-security.com, CVE-2014-2882 - Lack of SSL Certificate Validation in Citrix Netscaler (07.05.2014)
 documentadvisories_(at)_portcullis-security.com, CVE-2014-2881 - Poor Quality Implementation of Diffie-Hellman Key Exchange in Citrix Netscaler (07.05.2014)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород