CVE-2015-2841

Sažetak

Citrix NetScaler AppFirewall, as used in NetScaler 10.5, allows remote attackers to bypass intended firewall restrictions via a crafted Content-Type header, as demonstrated by the application/octet-stream and text/xml Content-Types.

Reference

http://seclists.org/fulldisclosure/2015/Mar/95
http://securitytracker.com/id/1031928
https://www.exploit-db.com/exploits/36369/

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

03-12-2016 - 03:06

Objavljeno

03-04-2015 - 14:59