Citrix XenDesktop 7.0, when upgraded from XenDesktop 5.x, does not properly enforce policy rule permissions, which allows remote attackers to bypass intended restrictions.
References
Link | Resource |
---|---|
http://support.citrix.com/article/CTX138627 | Vendor Advisory |
http://osvdb.org/98890 |
Configurations
Information
Published : 2013-11-05 10:55
Updated : 2013-11-06 17:22
NVD link : CVE-2013-6077
Mitre link : CVE-2013-6077
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Products Affected
citrix
- xendesktop