Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5107

Overview

Vulnerability Score 1.9 1.9
CVE Id CVE-2008-5107
Last Modified 07 Mar 2011 10:13:54
Published 17 Nov 2008 01:18:48
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2008-5107

Summary

The installation process for Citrix Presentation Server 4.5 and Desktop Server 1.0, when MSI logging is enabled, stores database credentials in MSI log files, which allows local users to obtain these credentials by reading the log files.

Vulnerable Systems

Application

  • Citrix Desktop Server 1.0

  • Citrix Presentation Server 4.5


References

VUPEN - ADV-2008-0705

BID - 28047

CONFIRM - http://support.citrix.com/article/CTX116228


Last Updated: 27 May 2016 10:48:42