CVE-2015-2841

Name of the Vulnerable Software and Affected Versions Citrix NetScaler versions 10.5

Description The issue allows remote attackers to bypass intended firewall restrictions by using a crafted Content-Type header. This can be achieved with specific Content-Types, such as application/octet-stream and text/xml.

Recommendations For version 10.5, consider restricting or validating the Content-Type header to prevent bypassing of firewall restrictions. As a temporary workaround, restrict access to sensitive areas of the application protected by the NetScaler AppFirewall until a more permanent solution is available.