CVE-2007-2850

Sažetak

The Session Reliability Service (XTE) in Citrix MetaFrame Presentation Server 3.0, Presentation Server 4.0, and Access Essentials 1.0 and 1.5, allows remote attackers to bypass network security policies and connect to arbitrary TCP ports via a modified address:port string.

Reference

http://fortconsult.net/files/fortconsult.dk/citrix_advisory.pdf
http://secunia.com/advisories/25371
http://support.citrix.com/article/CTX112964
http://www.securitytracker.com/id?1018098
http://www.vupen.com/english/advisories/2007/1918
https://exchange.xforce.ibmcloud.com/vulnerabilities/34448

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

29-07-2017 - 01:31

Objavljeno

24-05-2007 - 18:30