Back to search
CVE-2007-6192
Published: Nov 30, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
The web management interface in Citrix NetScaler 8.0 build 47.8 uses weak encryption (XOR of unpadded data) to store credentials within a cookie, which makes it easier for remote attackers to obtain cleartext credentials when a cookie is captured via a known-plaintext attack.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20071126 Citrix NetScaler Web Management Cookie Weakness
mailing-list
x_refsource_BUGTRAQ
netscaler-cookie-weak-encryption(38646)
vdb-entry
x_refsource_XF
1018991
vdb-entry
x_refsource_SECTRACK
3409
third-party-advisory
x_refsource_SREASON
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now