CVE-2007-0108

nwgina.dll in Novell Client 4.91 SP3 for Windows 2000/XP/2003 does not delete user profiles during a Terminal Service or Citrix session, which allows remote authenticated users to invoke alternate user profiles...

Novell Client NWGINA.DLL User档案文件安全绕过漏洞

Novell Client是一款Novell系统客户端。 Novell Client存在安全绕过问题，远程攻击者可以利用漏洞在Citrix环境中调用其他用户的档案文件，导致提权等攻击。 目前没有详细漏洞细节提供。 Novell Client 4.91 SP3 可联系供应商获得解决方案： http://support.novell.com/cgi-bin/search/searchtid.cgi?/2974970.htm...