Authentication Bypass in Citrix Access Gateway with LDAP Authentication
CVE-2006-4846

Currently unrated

Key Information:

Vendor: Citrix
Status: Access Gateway
Vendor: CVE Published:; 19 September 2006

Summary

An unspecified vulnerability exists in Citrix Access Gateway with Advanced Access Control 4.2 and earlier, specifically when configured to use LDAP authentication. This flaw allows remote attackers to exploit the system, bypassing authentication controls through unknown methods. Organizations using these configurations may expose sensitive resources to unauthorized access, highlighting the need for immediate attention and remediation.

References

http://securitytracker.com/id?1016874

vdb-entryx_refsource_SECTRACK

http://www.vupen.com/english/advisories/2006/3643

vdb-entryx_refsource_VUPEN

http://www.kb.cert.org/vuls/id/658620

third-party-advisoryx_refsource_CERT-VN

Timeline

Vulnerability published
Sep 19, 2006
Vulnerability Reserved
Sep 18, 2006