Описание
The web management interface in Citrix NetScaler 8.0 build 47.8 uses weak encryption (XOR of unpadded data) to store credentials within a cookie, which makes it easier for remote attackers to obtain cleartext credentials when a cookie is captured via a known-plaintext attack.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:citrix:netscaler:8.0:build_47.8:*:*:*:*:*:*
EPSS
Процентиль: 42%
0.00203
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-310
Связанные уязвимости
github
почти 4 года назад
The web management interface in Citrix NetScaler 8.0 build 47.8 uses weak encryption (XOR of unpadded data) to store credentials within a cookie, which makes it easier for remote attackers to obtain cleartext credentials when a cookie is captured via a known-plaintext attack.
EPSS
Процентиль: 42%
0.00203
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-310