The web management interface in Citrix NetScaler 8.0 build 47.8 uses weak encryption (XOR of unpadded data) to store credentials within a cookie, which makes it easier for remote malicious users to obtain cleartext credentials when a cookie is captured via a known-plaintext attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
citrix netscaler 8.0 |