Computer Security
[EN] securityvulns.ru no-pyccku


Citrix Netscaler security vulnerabilities
Published:07.05.2014
Source:
SecurityVulns ID:13752
Type:remote
Threat Level:
5/10
Description:Weak Diffie-Hellman protocol implementation, lack of SSL cerificate check.
Affected:CITRIX : NetScaler Application Delivery Controller 10.1
CVE:CVE-2014-2882 (Unspecified vulnerability in the management GUI in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway before 9.3-66.5 and 10.x before 10.1-122.17 has unspecified impact and vectors, related to certificate validation.)
 CVE-2014-2881 (Unspecified vulnerability in the Diffie-Hellman key agreement implementation in the management GUI Java applet in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway before 9.3-66.5 and 10.x before 10.1-122.17 has unknown impact and vectors.)
Original documentdocumentadvisories_(at)_portcullis-security.com, CVE-2014-2882 - Lack of SSL Certificate Validation in Citrix Netscaler (07.05.2014)
 documentadvisories_(at)_portcullis-security.com, CVE-2014-2881 - Poor Quality Implementation of Diffie-Hellman Key Exchange in Citrix Netscaler (07.05.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod