NetScaler Unencrypted Web Management Interface

medium Nessus Plugin ID 29224

Synopsis

The remote web management interface does not encrypt connections.

Description

The remote Citrix NetScaler web management interface does not use TLS or SSL to encrypt connections.

Solution

Consider disabling this port completely and using only HTTPS.

Plugin Details

Severity: Medium

ID: 29224

File Name: netscaler_web_unencrypted.nasl

Version: 1.12

Type: remote

Family: Web Servers

Published: 12/6/2007

Updated: 5/1/2024

Configuration: Enable thorough checks

Supported Sensors: Nessus

Vulnerability Information

CPE: cpe:/a:citrix:netscaler

Required KB Items: www/netscaler