CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2001-0908

CITRIX Metaframe 1.8 logs the Client Address (IP address) that is provided by the client instead of obtaining it from the packet headers, which allows clients to spoof their public IP address, e.g. through Network Address Translation (NAT).

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.6%

CVSS Severity

CVSS v2 Score 7.5

References

http://marc.info/?l=bugtraq&m=100638693315933&w=2
http://www.securityfocus.com/bid/3566
https://exchange.xforce.ibmcloud.com/vulnerabilities/7538
http://marc.info/?l=bugtraq&m=100638693315933&w=2
http://www.securityfocus.com/bid/3566
https://exchange.xforce.ibmcloud.com/vulnerabilities/7538

Products affected by CVE-2001-0908

Citrix » Metaframe » Version: 1.8

cpe:2.3:a:citrix:metaframe:1.8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2001-0908

Products

Pricing

Contact Us