PT-2006-7174 · Citrix · Citrix Access Gateway+1
Published
2006-12-15
·
Updated
2017-07-29
·
CVE-2006-6572
CVSS v2.0
6.5
Medium
| Vector | AV:N/AC:L/Au:S/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Citrix Access Gateway versions 4.2 with Advanced Access Control 4.2
Citrix Advanced Access Control (AAC) Option version 4.0
Description
The issue allows remote authenticated users to bypass access policies via a certain login method when the Browser-Only access feature is enabled.
Recommendations
For Citrix Access Gateway version 4.2 with Advanced Access Control 4.2, update to a version released after 20061114.
For Citrix Advanced Access Control (AAC) Option version 4.0, update to a version released after 20061114.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Citrix Access Gateway
Citrix Advanced Access Control (Aac) Option