Cisco Bug: CSCta48867 - AXG/flex improperly re-uses TCP connection with NTLM authentication
Feb 01, 2017
- Cisco ACE XML Gateways
- Cisco ACE XML Gateway
Known Affected Releases
5.2 6.0 6.0(1) 6.0(2) 6.0(3)
Symptom: Either a client receives a 401 (Unauthorized) response on a TCP connection, which was previously used to authenticate this client using NTLM, or a client who did not perform NTLM authentication on a connection succeeds with a request, which the client is not authorized to make. Conditions: Several handlers (and service descriptors) routing to the same back-end, which uses NTLM authentication. Some clients sending requests to those handlers successfully perform NTLM authentication. This issue exists on flex path handlers only.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases