Vulnerabilities > CVE-2007-2850 - Unspecified vulnerability in Citrix Access Essentials and Metaframe

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

citrix

NVD

Published: 2007-05-24

Updated: 2017-07-29

Summary

The Session Reliability Service (XTE) in Citrix MetaFrame Presentation Server 3.0, Presentation Server 4.0, and Access Essentials 1.0 and 1.5, allows remote attackers to bypass network security policies and connect to arbitrary TCP ports via a modified address:port string.

Vulnerable Configurations

Part	Description	Count
Application	Citrix Citrix Access Essentials 1.0 Citrix Access Essentials 1.5 Citrix Metaframe 4.0 Citrix Metaframe 3.0	8

References

http://support.citrix.com/article/CTX112964
http://www.securitytracker.com/id?1018098
http://secunia.com/advisories/25371
http://www.vupen.com/english/advisories/2007/1918
http://fortconsult.net/files/fortconsult.dk/citrix_advisory.pdf
https://exchange.xforce.ibmcloud.com/vulnerabilities/34448