PT-2013-5943 · Citrix · Citrix Xendesktop
Publicado
2013-11-05
·
Atualizado
2013-11-07
·
CVE-2013-6077
CVSS v2.0
5.8
Média
| Vetor | AV:N/AC:M/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Citrix XenDesktop version 7.0
Description
The issue arises when Citrix XenDesktop 7.0 is upgraded from XenDesktop 5.x, resulting in improper enforcement of policy rule permissions. This allows remote attackers to bypass intended restrictions.
Recommendations
For Citrix XenDesktop version 7.0, ensure that policy rule permissions are manually reviewed and enforced after the upgrade from XenDesktop 5.x to prevent unauthorized access.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Citrix Xendesktop