CVE-2015-5080

Currently unrated

Key Information:

Vendor: Citrix
Status: Netscaler Application Delivery Controller Firmware; Netscaler Gateway Firmware
Vendor: CVE Published:; 16 July 2015

Summary

The Management Interface in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 10.1 before 10.1.132.8, 10.5 before Build 56.15, and 10.5.e before Build 56.1505.e allows remote authenticated users to execute arbitrary shell commands via shell metacharacters in the filter parameter to rapi/ipsec_logs.

References

http://security-assessment.com/files/documents/advisory/C...

x_refsource_MISC

http://support.citrix.com/article/CTX201149

x_refsource_CONFIRM

http://www.securitytracker.com/id/1032762

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jul 16, 2015
Vulnerability Reserved
Jun 26, 2015

Collectors

NVD DatabaseMitre Database