Title: Network Appliance NetCache Tunnelling Configuration Vulnerability
Severity: HIGH
Description:
NetCache is an appliance designed to provide caching of commonly accessed network resources as a means of enhanced content delivery.
A problem exists in the default configurations of some versions of the NetCache Operating System. With some configurations, the 'config.http.tunnel.allow_ports' option is set to '+all'.
As a result, it may be possible for remote users to tunnel through the appliance to arbitrary ports on any remote system.
Affected Products:
- Network Appliance NetCacheC1100 Series
- Network Appliance NetCacheC3100 Series
- Network Appliance NetCacheC6100 Series
- Network Appliance NetCacheC700 Series
References:
- Network Appliance: Network Appliance Products - NetCache
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
