CVE-2007-3679

Currently unrated

Key Information:

Vendor: Citrix
Status: Access Gateway
Vendor: CVE Published:; 25 July 2007

Summary

The Citrix EPA ActiveX control (aka the "endpoint checking control" or CCAOControl Object) before 4.5.0.0 in npCtxCAO.dll in Citrix Access Gateway Standard Edition before 4.5.5 and Advanced Edition before 4.5 HF1 allows remote attackers to download and execute arbitrary programs onto a client system.

References

http://osvdb.org/37845

vdb-entryx_refsource_OSVDB

http://www.vupen.com/english/advisories/2007/2583

vdb-entryx_refsource_VUPEN

http://securityreason.com/securityalert/2916

third-party-advisoryx_refsource_SREASON

Timeline

Vulnerability published
Jul 25, 2007
Vulnerability Reserved
Jul 11, 2007