VulDB: Citrix Access Gateway up to 5.0.4 unknown vulnerability
General
scipID: 5905
Affected: Citrix Access Gateway up to 5.0.4
Published: 07/31/2012
Risk: 
problematic
Entry: 78.8% complete
Created: 08/10/2012
Summary
A vulnerability classified as problematic was found in Citrix Access Gateway up to 5.0.4. As an impact it is known to affect integrity.
The weakness was published 07/31/2012 as CTX133648 as advisory (Website). The advisory is shared for download at support.citrix.com. The attack can be launched remotely. The exploitation doesn’t need any form of authentication. Neither technical details nor an exploit are publicly available.
The best possible mitigation is suggested to be patching the affected component. A possible mitigation has been published immediately after the disclosure of the vulnerability. The vulnerability is also documented in the databases at OSVDB (84432) and Secunia (SA50140).CVSS
Base Score: 4.3 (CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N) [?]
| Access Vector | Access Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Local | High | Multiple | None | None | None |
| Adjacent | Medium | Single | Partial | Partial | Partial |
| Network | Low | None | Complete | Complete | Complete |
Exploiting
Local: No
Remote: Yes
Availability: No
Countermeasures
Recommended: Patch
Reaction Time: 0 days since reported
0-Day Time: 0 days since found
Exposure Time: 0 days since known
Timeline
07/31/2012 | Advisory disclosed
07/31/2012 | Countermeasure disclosed
08/03/2012 | OSVDB entry created
08/10/2012 | VulDB entry created
08/10/2012 | VulDB entry updated
Sources
Advisory: CTX133648
