Guest

Preview Tool

Cisco Bug: CSCta48867 - AXG/flex improperly re-uses TCP connection with NTLM authentication

Last Modified

Feb 01, 2017

Products (2)

  • Cisco ACE XML Gateways
  • Cisco ACE XML Gateway

Known Affected Releases

5.2 6.0 6.0(1) 6.0(2) 6.0(3)

Description (partial)

Symptom:

Either a client receives a 401 (Unauthorized) response on a TCP connection, which was previously used to authenticate this client using NTLM, or a client who did not perform NTLM authentication on a connection succeeds with a request, which the client is not authorized to make.
Conditions:

Several handlers (and service descriptors) routing to the same back-end, which uses NTLM authentication. Some clients sending requests to those handlers successfully perform NTLM authentication. This issue exists on flex path handlers only.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.