Network Appliance NetCache Tunnelling Configuration Vulnerability

NetCache is an appliance designed to provide caching of commonly accessed network resources as a means of enhanced content delivery.

A problem exists in the default configurations of some versions of the NetCache Operating System. With some configurations, the 'config.http.tunnel.allow_ports' option is set to '+all', enabling remote users to tunnel through the appliance to arbitrary ports on any remote system.


 

Privacy Statement
Copyright 2010, SecurityFocus