exploitDog

CVE-2008-5107

Опубликовано: 17 нояб. 2008

Источник: nvd

CVSS2: 1.9

EPSS Низкий

Описание

The installation process for Citrix Presentation Server 4.5 and Desktop Server 1.0, when MSI logging is enabled, stores database credentials in MSI log files, which allows local users to obtain these credentials by reading the log files.

Ссылки

http://support.citrix.com/article/CTX116228
Vendor Advisory
http://www.securityfocus.com/bid/28047
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2008/0705/references
Permissions Required
http://support.citrix.com/article/CTX116228
Vendor Advisory
http://www.securityfocus.com/bid/28047
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2008/0705/references
Permissions Required

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:citrix:desktop_server:1.0:*:*:*:*:*:*:*

cpe:2.3:a:citrix:presentation_server:4.5:*:*:*:*:*:*:*

EPSS

Процентиль: 29%

0.00103

Низкий

1.9 Low

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-397q-cw94-mxpp

github

больше 3 лет назад

The installation process for Citrix Presentation Server 4.5 and Desktop Server 1.0, when MSI logging is enabled, stores database credentials in MSI log files, which allows local users to obtain these credentials by reading the log files.

EPSS

Процентиль: 29%

0.00103

Низкий

1.9 Low

CVSS2

Дефекты

CWE-200