NetScaler Web Management Interface IP Address Cookie Information Disclosure

Medium Nessus Plugin ID 29221


The remote web server is prone to an information disclosure attack.


It is possible to extract information about the remote Citrix NetScaler appliance obtained from the web management interface's session cookie, including the appliance's main IP address and software version.



See Also

Plugin Details

Severity: Medium

ID: 29221

File Name: netscaler_web_cookie_info.nasl

Version: $Revision: 1.12 $

Type: remote

Family: Web Servers

Published: 2007/12/06

Modified: 2016/11/23

Dependencies: 29223

Risk Information

Risk Factor: Medium


Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Information

CPE: cpe:/a:citrix:netscaler

Required KB Items: www/netscaler, http/password

Reference Information

CVE: CVE-2007-6193

OSVDB: 44155

CWE: 200