CVE-2007-0011

Current Description

The web portal interface in Citrix Access Gateway (aka Citrix Advanced Access Control) before Advanced Edition 4.5 HF1 places a session ID in the URL, which allows context-dependent attackers to hijack sessions by reading "residual information", including the a referer log, browser history, or browser cache.

Basic Data

PublishedNovember 05, 2007
Last ModifiedOctober 16, 2018
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeCWE-200
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactPARTIAL
CVSS 2 - Availability ImpactNONE
CVSS 2 - Base Score5.0
SeverityMEDIUM
Exploitability Score10.0
Impact Score2.9
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationCitrixAccess Gateway4.0*******
    2.3ApplicationCitrixAccess Gateway4.2*******
    2.3ApplicationCitrixAccess Gateway4.5*advanced*****
    2.3ApplicationCitrixAccess Gateway4.5*standard*****

Vulnerable Software List

VendorProductVersions
Citrix Access Gateway 4.0, 4.2, 4.5

References

NameSourceURLTags
45288http://osvdb.org/45288OSVDB
26143http://secunia.com/advisories/26143SECUNIAPatch Vendor Advisory
1018435http://securitytracker.com/id?1018435SECTRACK
http://support.citrix.com/article/CTX112803http://support.citrix.com/article/CTX112803CONFIRM
http://support.citrix.com/article/CTX113814http://support.citrix.com/article/CTX113814CONFIRM
20071022 Corsaire Security Advisory - Citrix Access Gateway session ID disclosure issuehttp://www.securityfocus.com/archive/1/482626/100/100/threadedBUGTRAQ
24975http://www.securityfocus.com/bid/24975BIDPatch
ADV-2007-2583http://www.vupen.com/english/advisories/2007/2583VUPEN
citrix-access-unspeci-information-disclosure(35510)https://exchange.xforce.ibmcloud.com/vulnerabilities/35510XF