Access Control Bypass in Citrix XenApp by Citrix
CVE-2009-2453

Currently unrated

Key Information:

Vendor
Citrix
Vendor
CVE Published:
14 July 2009

Summary

Citrix XenApp (previously known as Presentation Server) 4.5 Hotfix Rollup Pack 3 contains a vulnerability that allows attackers to circumvent intended access restrictions. This issue arises when access policies fail to apply correctly in conjunction with Access Gateway Advanced Edition filters, potentially exposing sensitive resources to unauthorized users through undisclosed attack vectors.

References

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.