Weak Encryption in Citrix Presentation Server and Related Products
CVE-2008-2299

Currently unrated

Key Information:

Vendor
Citrix
Vendor
CVE Published:
18 May 2008

Summary

An unspecified vulnerability in the SecureICA and ICA Basic encryption protocols of Citrix Presentation Server versions up to 4.5, Access Essentials 2.0, and Desktop Server 1.0 can result in clients adopting encryption settings that are weaker than what the administrator has configured. This issue may permit attackers to bypass intended security measures, undermining the overall integrity of data transmitted between clients and servers.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.