Spoofing in Terminal Server Agent

2017-01-26T18:31:00
ID PAN-SA-2017-0002
Type paloalto
Reporter Palo Alto Networks Product Security Incident Response Team
Modified 2017-01-26T18:31:00

Description

A spoofing vulnerability exists in Terminal Server Agent (ref # PAN-67269 / CVE-2017-5328). Terminal Server Agent contains a vulnerability whereby a user can spoof the identity of another authenticated user. This issue affects Terminal Server Agent 6.0; Terminal Server Agent 7.0.6 and earlier

Work around: N/A