exploitDog

CVE-2008-4676

Опубликовано: 22 окт. 2008

Источник: nvd

CVSS2: 6.8

EPSS Низкий

Описание

Unspecified vulnerability in Citrix XenApp (formerly Presentation Server) 4.5 Feature Pack 1 and earlier, Presentation Server 4.0, and Access Essentials 1.0, 1.5, and 2.0 allows local users to gain privileges via unknown attack vectors related to creating an unspecified file. NOTE: this might be the same issue as CVE-2008-3485, but the vendor advisory is too vague to be certain.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:citrix:access_essentials:1.0:*:*:*:*:*:*:*

cpe:2.3:a:citrix:access_essentials:1.5:*:*:*:*:*:*:*

cpe:2.3:a:citrix:access_essentials:2.0:*:*:*:*:*:*:*

cpe:2.3:a:citrix:presentation_server:4.0:*:*:*:*:*:*:*

cpe:2.3:a:citrix:xenapp:*:fp1:*:*:*:*:*:*

Версия до 4.5 (включая)

cpe:2.3:a:citrix:xenapp:4.5:*:*:*:*:*:*:*

EPSS

Процентиль: 21%

0.00066

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-3fwq-fwp5-8g8r

github

больше 3 лет назад

Unspecified vulnerability in Citrix XenApp (formerly Presentation Server) 4.5 Feature Pack 1 and earlier, Presentation Server 4.0, and Access Essentials 1.0, 1.5, and 2.0 allows local users to gain privileges via unknown attack vectors related to creating an unspecified file. NOTE: this might be the same issue as CVE-2008-3485, but the vendor advisory is too vague to be certain.

EPSS

Процентиль: 21%

0.00066

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-264