CVE-2009-3936

Currently unrated

Key Information:

Vendor: Citrix
Status: Online Plug-in For Mac; Online Plug-in For Windows; Receiver For Iphone
Vendor: CVE Published:; 13 November 2009

Summary

Unspecified vulnerability in Citrix Online Plug-in for Windows 11.0.x before 11.0.150 and 11.x before 11.2, Online Plug-in for Mac before 11.0, Receiver for iPhone before 1.0.3, and ICA Java, Mac, UNIX, and Windows Clients for XenApp and XenDesktop allows remote attackers to impersonate the SSL/TLS server and bypass authentication via a crafted certificate, a different vulnerability than CVE-2009-3555.

References

http://www.vupen.com/english/advisories/2009/3206

vdb-entryx_refsource_VUPEN

http://support.citrix.com/article/CTX123248

x_refsource_CONFIRM

http://www.securityfocus.com/bid/37073

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Nov 13, 2009
Vulnerability Reserved
Nov 13, 2009

Collectors

NVD DatabaseMitre Database