Lucene search

K
cve[email protected]CVE-2007-2850
HistoryMay 24, 2007 - 6:30 p.m.

CVE-2007-2850

2007-05-2418:30:00
NVD-CWE-Other
web.nvd.nist.gov
23
citrix
metaframe presentation server
session reliability service
network security
tcp ports
cve-2007-2850

7.7 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.039 Low

EPSS

Percentile

91.8%

The Session Reliability Service (XTE) in Citrix MetaFrame Presentation Server 3.0, Presentation Server 4.0, and Access Essentials 1.0 and 1.5, allows remote attackers to bypass network security policies and connect to arbitrary TCP ports via a modified address:port string.

7.7 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.039 Low

EPSS

Percentile

91.8%

Related for CVE-2007-2850