Weak Encryption in Citrix Presentation Server and Related Products
CVE-2008-2299
Currently unrated
Summary
An unspecified vulnerability in the SecureICA and ICA Basic encryption protocols of Citrix Presentation Server versions up to 4.5, Access Essentials 2.0, and Desktop Server 1.0 can result in clients adopting encryption settings that are weaker than what the administrator has configured. This issue may permit attackers to bypass intended security measures, undermining the overall integrity of data transmitted between clients and servers.
References
Timeline
Vulnerability published
Vulnerability Reserved