Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-2453

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2009-2453
Last Modified 14 Jul 2009 12:00:00
Published 14 Jul 2009 10:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2009-2453

Summary

Citrix XenApp (formerly Presentation Server) 4.5 Hotfix Rollup Pack 3 does not apply an access policy when it is defined with the Access Gateway Advanced Edition filters, which allows attackers to bypass intended access restrictions via unknown vectors.

Vulnerable Systems

Application

  • Citrix Presentation Server 4.5

  • Citrix Xenapp 4.5


References

VUPEN - ADV-2009-1154

SECTRACK - 1022114

BID - 34691

CONFIRM - http://support.citrix.com/article/CTX118792

SECUNIA - 34865

OSVDB - 53900


Last Updated: 27 May 2016 10:50:54