ID |
CVE-2007-4018
|
Summary |
Citrix Access Gateway Advanced Edition before firmware 4.5.5 allows attackers to redirect users to arbitrary web sites and conduct phishing attacks via unknown vectors. Citrix Access Gateway is available as software or as a hardware device. |
References |
|
Vulnerable Configurations |
|
CVSS |
Base: | 6.8 (as of 29-07-2017 - 01:32) |
Impact: | |
Exploitability: | |
|
CWE |
NVD-CWE-Other |
CAPEC |
|
Access |
Vector | Complexity | Authentication |
NETWORK |
MEDIUM |
NONE |
|
Impact |
Confidentiality | Integrity | Availability |
PARTIAL |
PARTIAL |
PARTIAL |
|
cvss-vector
via4
|
AV:N/AC:M/Au:N/C:P/I:P/A:P
|
refmap
via4
|
bid | 24975 | confirm | | osvdb | 37840 | sectrack | 1018435 | secunia | 26143 | vupen | ADV-2007-2583 | xf | citrix-access-unspecified-redirection(35512) |
|
Last major update |
29-07-2017 - 01:32 |
Published |
26-07-2007 - 01:30 |
Last modified |
29-07-2017 - 01:32 |