CVE-2008-5107

Sažetak

The installation process for Citrix Presentation Server 4.5 and Desktop Server 1.0, when MSI logging is enabled, stores database credentials in MSI log files, which allows local users to obtain these credentials by reading the log files.

Reference

http://support.citrix.com/article/CTX116228
http://www.securityfocus.com/bid/28047
http://www.vupen.com/english/advisories/2008/0705/references

CVSS

Base:	1.9
Impact:	2.9
Exploitability:	3.4

Pristup

Vektor	Složenost	Autentikacija
LOCAL	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:L/AC:M/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

04-12-2017 - 18:59

Objavljeno

17-11-2008 - 18:18