CVE-2001-1087

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
05/07/2001
Last modified:
03/04/2025

Description

The default configuration of the config.http.tunnel.allow_ports option on NetCache devices is set to +all, which allows remote attackers to connect to arbitrary ports on remote systems behind the device.

Vulnerable products and versions

CPE From Up to
cpe:2.3:h:network_appliance:netcache:c700:*:*:*:*:*:*:*
cpe:2.3:h:network_appliance:netcache:c1100:*:*:*:*:*:*:*
cpe:2.3:h:network_appliance:netcache:c3100:*:*:*:*:*:*:*
cpe:2.3:h:network_appliance:netcache:c6100:*:*:*:*:*:*:*