CVE-2008-2300

2008-05-1814:20:00

CWE-264

[email protected]

web.nvd.nist.gov

citrix

presentation server

access essentials

desktop server

remote access

unauthorized access

vulnerability

cve-2008-2300

nvd

6.2 Medium

AI Score

Confidence

Low

6.5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

73.5%

JSON

Unspecified vulnerability in Citrix Presentation Server 4.5 and earlier, Citrix Access Essentials 2.0 and earlier, and Citrix Desktop Server 1.0 allows remote authenticated users to access unauthorized desktops via unknown attack vectors.

Affected configurations

NVD

Node

citrixaccess_essentialsRange≤2.0

citrixaccess_essentialsMatch1.0

citrixaccess_essentialsMatch1.5

citrixcitrix_presentation_serverRange≤4.5

citrixdesktop_serverMatch1.0

citrixmetaframe_presentation_serverMatch4.0

CPENameOperatorVersion
citrix:access_essentialscitrix access essentialsle2.0
citrix:access_essentialscitrix access essentialseq1.0
citrix:access_essentialscitrix access essentialseq1.5
citrix:citrix_presentation_servercitrix citrix presentation serverle4.5
citrix:desktop_servercitrix desktop servereq1.0
citrix:metaframe_presentation_servercitrix metaframe presentation servereq4.0

CPE	Name	Operator	Version
citrix:access_essentials	citrix access essentials	le	2.0
citrix:access_essentials	citrix access essentials	eq	1.0
citrix:access_essentials	citrix access essentials	eq	1.5
citrix:citrix_presentation_server	citrix citrix presentation server	le	4.5
citrix:desktop_server	citrix desktop server	eq	1.0
citrix:metaframe_presentation_server	citrix metaframe presentation server	eq	4.0