Arbitrary Port Access Vulnerability in NetCache Devices

Arbitrary Port Access Vulnerability in NetCache Devices

CVE-2001-1087 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The default configuration of the config.http.tunnel.allow_ports option on NetCache devices is set to +all, which allows remote attackers to connect to arbitrary ports on remote systems behind the device.

Learn more about our Web Application Penetration Testing UK.