Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-6314

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2012-6314
Last Modified 27 Dec 2012 02:17:13
Published 26 Dec 2012 05:55:03
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-6314

Summary

Citrix XenDesktop Virtual Desktop Agent (VDA) 5.6.x before 5.6.200, when making changes to the server-side policy that control USB redirection, does not propagate changes to the VDA, which allows authenticated users to retain access to the USB device.

Vulnerable Systems

Application

  • Citrix Xendesktop 5.6


References

XF - xendesktop-vda-sec-bypass(80626)

SECTRACK - 1027869

BID - 56908

CONFIRM - http://support.citrix.com/article/CTX135813

SECUNIA - 51524

OSVDB - 88369


Last Updated: 27 May 2016 10:47:22