Vulnerability Details CVE-2009-2453
Citrix XenApp (formerly Presentation Server) 4.5 Hotfix Rollup Pack 3 does not apply an access policy when it is defined with the Access Gateway Advanced Edition filters, which allows attackers to bypass intended access restrictions via unknown vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.7%
CVSS Severity
CVSS v2 Score 7.5
References
- http://osvdb.org/53900
- http://secunia.com/advisories/34865
- http://support.citrix.com/article/CTX118792
- http://www.securityfocus.com/bid/34691
- http://www.securitytracker.com/id?1022114
- http://www.vupen.com/english/advisories/2009/1154
- http://osvdb.org/53900
- http://secunia.com/advisories/34865
- http://support.citrix.com/article/CTX118792
- http://www.securityfocus.com/bid/34691
- http://www.securitytracker.com/id?1022114
- http://www.vupen.com/english/advisories/2009/1154
Products affected by CVE-2009-2453
-
cpe:2.3:a:citrix:presentation_server:4.5
-
cpe:2.3:a:citrix:xenapp:4.5