CVE-2012-6606

Name of the Vulnerable Software and Affected Versions Palo Alto Networks GlobalProtect versions prior to 1.1.7 NetConnect (affected versions not specified)

Description The issue allows man-in-the-middle attackers to spoof portal servers and obtain sensitive information via a crafted certificate, as it does not verify X.509 certificates from SSL servers.

Recommendations For Palo Alto Networks GlobalProtect versions prior to 1.1.7, update to version 1.1.7 or later to resolve the issue. For NetConnect, at the moment, there is no information about a newer version that contains a fix for this vulnerability.