1. CVE-Search
  2. CVE-2016-6493
ID CVE-2016-6493
Summary Citrix XenApp 6.x before 6.5 HRP07 and 7.x before 7.9 and Citrix XenDesktop before 7.9 might allow attackers to weaken an unspecified security mitigation via vectors related to memory permission.
References
Vulnerable Configurations
  • cpe:2.3:a:citrix:xenapp:6.0.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:citrix:xenapp:6.0.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xenapp:6.5.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:citrix:xenapp:6.5.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xenapp:7.0.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:citrix:xenapp:7.0.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xenapp:7.1.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:citrix:xenapp:7.1.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xenapp:7.5.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:citrix:xenapp:7.5.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xenapp:7.6.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:citrix:xenapp:7.6.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xenapp:7.7.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:citrix:xenapp:7.7.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xenapp:7.8.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:citrix:xenapp:7.8.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xendesktop:4.0:*:*:*:*:*:*:*
    cpe:2.3:a:citrix:xendesktop:4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xendesktop:4.0:fp1:*:*:*:*:*:*
    cpe:2.3:a:citrix:xendesktop:4.0:fp1:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xendesktop:4.0:fp2:*:*:*:*:*:*
    cpe:2.3:a:citrix:xendesktop:4.0:fp2:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xendesktop:5.0:*:*:*:*:*:*:*
    cpe:2.3:a:citrix:xendesktop:5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xendesktop:5.0:sp1:*:*:*:*:*:*
    cpe:2.3:a:citrix:xendesktop:5.0:sp1:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xendesktop:5.6:*:*:*:*:*:*:*
    cpe:2.3:a:citrix:xendesktop:5.6:*:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xendesktop:5.6:fp1:*:*:*:*:*:*
    cpe:2.3:a:citrix:xendesktop:5.6:fp1:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xendesktop:5.6.300:*:*:*:*:*:*:*
    cpe:2.3:a:citrix:xendesktop:5.6.300:*:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xendesktop:7.0:*:*:*:*:*:*:*
    cpe:2.3:a:citrix:xendesktop:7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xendesktop:7.1:*:*:*:*:*:*:*
    cpe:2.3:a:citrix:xendesktop:7.1:*:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xendesktop:7.5:*:*:*:*:*:*:*
    cpe:2.3:a:citrix:xendesktop:7.5:*:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xendesktop:7.6:*:*:*:*:*:*:*
    cpe:2.3:a:citrix:xendesktop:7.6:*:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xendesktop:7.7:*:*:*:*:*:*:*
    cpe:2.3:a:citrix:xendesktop:7.7:*:*:*:*:*:*:*
  • cpe:2.3:a:citrix:xendesktop:7.8:*:*:*:*:*:*:*
    cpe:2.3:a:citrix:xendesktop:7.8:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 23-08-2016 - 15:02)
Impact:
Exploitability:
CWE CWE-254
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bid 92316
confirm http://support.citrix.com/article/CTX215460
sectrack 1036539
Last major update 23-08-2016 - 15:02
Published 19-08-2016 - 21:59
Last modified 23-08-2016 - 15:02
Back to Top