Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4412

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2005-4412
Last Modified 05 Sep 2008 04:56:49
Published 20 Dec 2005 06:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-4412

Summary

Citrix Program Neighborhood client before 9.150 caches the user password in plaintext in the GUI while asterisks are used to visually obfuscate the password, which allows attackers with access to the session to obtain the password by using a tool to directly access the field.

Vulnerable Systems

Application

  • Citrix Program Neighborhood Client 9.1


References

CONFIRM - http://support.citrix.com/article/CTX108108

SECTRACK - 1015372


Last Updated: 27 May 2016 10:41:18