CVE-2014-2690
Citrix VDI-in-a-Box is affected (versions 5.3.x prior to 5.3.6 and 5.4.x prior to 5.4.3). Local users can obtain administrator credentials by reading the log. The available sources state the root cause as a log-read vulnerability but do not provide deeper technical details, exploit steps, or a pa...