CVE-2007-0011

Name of the Vulnerable Software and Affected Versions Citrix Access Gateway versions prior to Advanced Edition 4.5 HF1

Description The issue affects the web portal interface, allowing context-dependent attackers to hijack sessions by reading residual information, including referer logs, browser history, or browser cache, due to the session ID being placed in the URL.

Recommendations For versions prior to Advanced Edition 4.5 HF1, update to Advanced Edition 4.5 HF1 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive information and clearing browser history and cache regularly to minimize the risk of session hijacking.