Citrix: >> Netscaler >> 8.0 Security Vulnerabilities
The web management interface in Citrix NetScaler 8.0 build 47.8 uses weak encryption (XOR of unpadded data) to store credentials within a cookie, which makes it easier for remote attackers to obtain cleartext credentials when a cookie is captured via a known-plaintext attack.
CVSS Score
4.3
EPSS Score
0.002
Published
2007-11-30
The web management interface in Citrix NetScaler 8.0 build 47.8 stores the device's primary IP address in a cookie, which might allow remote attackers to obtain sensitive network configuration information if this address is not the same as the address being used by the web interface.
CVSS Score
5.0
EPSS Score
0.003
Published
2007-11-30