5

CVE-2008-2299

EPSS 0.42%
Veröffentlicht 18.05.2008 14:20:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Unspecified vulnerability in SecureICA and ICA Basic encryption of Citrix Presentation Server 4.5 and earlier, Access Essentials 2.0 and earlier, and Desktop Server 1.0 can cause clients to use weaker encryption settings than configured by the administrator, which might allow attackers to bypass intended restrictions.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 9

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Citrix ≫ Presentation Server Version <= 4.5

Microsoft ≫ Windows 2003 Server

Citrix ≫ Access Essentials Version <= 2.0

Citrix ≫ Desktop Server Version1.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.42%	0.59

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

http://secunia.com/advisories/30271

Vendor Advisory

http://support.citrix.com/article/CTX114893

Patch

http://www.securityfocus.com/bid/29233

http://www.securitytracker.com/id?1020026

Patch

http://www.vupen.com/english/advisories/2008/1531/references

https://exchange.xforce.ibmcloud.com/vulnerabilities/42444

https://nvd.nist.gov/vuln/detail/CVE-2008-2299

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-2299

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-2299

EUVD