Summary
The remote web management interface does not encrypt connections.
Description :
The remote Citrix NetScaler web management interface does use TLS or SSL to encrypt connections.
Solution
Consider disabling this port completely and using only HTTPS.
Severity
Classification
-
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- jHTTPd Directory Traversal Vulnerability
- Apache Tomcat Multiple Security Bypass Vulnerabilities (Win)
- Aspen Sever Directory Traversal Vulnerability
- Apache HTTP Server 'httpOnly' Cookie Information Disclosure Vulnerability
- IBM Rational Quality Manager and Rational Test Lab Manager Tomcat Default Account Vulnerability