Citrix XenServer 7.0 before Hotfix XS70E003, when a deployment has been upgraded from an earlier release, might allow remote attackers on the management network to "compromise" a host by leveraging credentials for an Active Directory account.
References
Link | Resource |
---|---|
https://support.citrix.com/article/CTX213769 | |
http://support.citrix.com/article/CTX213549 | Vendor Advisory |
http://www.securitytracker.com/id/1036082 |
Configurations
Information
Published : 2016-06-13 07:59
Updated : 2016-06-20 05:23
NVD link : CVE-2016-5302
Mitre link : CVE-2016-5302
JSON object : View
CWE
CWE-284
Improper Access Control
Products Affected
citrix
- xenserver