Vulnerabilities > CVE-2014-1663 - Information Disclosure vulnerability in Citrix products

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
citrix
NVD
Published: 2014-02-06
Updated: 2018-01-03

Summary

Unspecified vulnerability in Citrix XenMobile Device Manager server (formerly Zenprise Device Manager server) 8.5, 8.6, and MDM 8.0.1 allows remote attackers to obtain sensitive information via unknown vectors.

Vulnerable Configurations

Part Description Count
Application
Citrix
3

Seebug

bulletinFamilyexploit
descriptionBUGTRAQ ID: 65348 CVE(CAN) ID: CVE-2014-1663 Citrix XenMobile设备管理器是企业级移动设备管理解决方案。 Citrix XenMobile设备管理器8.0.1, 8.5, 8.6版本存在不明细节信息泄露漏洞,成功利用后可使远程攻击者获取敏感信息。 0 Citrix XenMobile Device Manager 8.x Citrix XenMobile Device Manager 7.x Citrix XenMobile Device Manager 6.x 厂商补丁: Citrix ------ 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://support.citrix.com/ http://www.citrix.com/downloads/xenmobile/product-software/xenmobile-86-mdm-edition.html http://support.citrix.com/article/CTX140044
idSSV:61490
last seen2017-11-19
modified2014-02-20
published2014-02-20
reporterRoot
titleCitrix XenMobile Device Manager服务器信息泄露漏洞(CVE-2014-1663)

References