5

CVE-2008-2299

EPSS 0.42%
Published 18.05.2008 14:20:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

Unspecified vulnerability in SecureICA and ICA Basic encryption of Citrix Presentation Server 4.5 and earlier, Access Essentials 2.0 and earlier, and Desktop Server 1.0 can cause clients to use weaker encryption settings than configured by the administrator, which might allow attackers to bypass intended restrictions.

Affected products Warnungen 0 Metrics 2 CWE 0 References 9

Data is provided by the National Vulnerability Database (NVD)

Citrix ≫ Presentation Server Version <= 4.5

Microsoft ≫ Windows 2003 Server

Citrix ≫ Access Essentials Version <= 2.0

Citrix ≫ Desktop Server Version1.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.42%	0.59

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

http://secunia.com/advisories/30271

Vendor Advisory

http://support.citrix.com/article/CTX114893

Patch

http://www.securityfocus.com/bid/29233

http://www.securitytracker.com/id?1020026

Patch

http://www.vupen.com/english/advisories/2008/1531/references

https://exchange.xforce.ibmcloud.com/vulnerabilities/42444

https://nvd.nist.gov/vuln/detail/CVE-2008-2299

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-2299

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-2299

EUVD