Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The NSEPA.NsepaCtrl.1 ActiveX control in nsepa.ocx in Citrix Access Gateway Enterprise Edition 8.1 before 8.1-67.7, 9.0 before 9.0-70.5, and 9.1 before 9.1-96.4 attempts to validate signed DLLs by checking the certificate subject, not the signature, which allows man-in-the-middle attackers to execute arbitrary code via HTTP header data referencing a DLL that was signed with a crafted certificate.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Citrix Access Gateway nsepa.ocx NSEPA.NsepaCtrl.1 ActiveX控件任意代码执行漏洞
Vulnerability Description
Citrix Access Gateway是一款通用的SSL VPN设备。 Citrix Access Gateway Enterprise Edition 8.1-67.7之前的8.1版本,9.0-70.5之前的9.0版本,9.1-96.4之前的9.1版本的nsepa.ocx中的NSEPA.NsepaCtrl.1 ActiveX控件通过检查证书的主体尝试验证已签名的DLLs,而不是验证签名。中间人攻击者可借助引用DLL(使用特制证书签名)的HTTP头数据执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A