header-logo
Suggest Exploit
vendor:
Citrix
by:
SecurityFocus
3.3
CVSS
MEDIUM
Information Disclosure
200
CWE
Product Name: Citrix
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: YES
Related CWE: N/A
CPE: a:citrix:citrix
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

Information Disclosure in Citrix

It is possible for an attacker to obtain information regarding Published Applications, by sending specially crafted requests to the Citrix server, and examining responses. By bruteforcing a Citrix Published Applications list, it may be possible for an attacker to launch further attacks.

Mitigation:

Ensure that the Citrix server is configured securely and that all requests are properly authenticated.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/5908/info

A vulnerability has been discovered in Citrix.

It is possible for an attacker to obtain information regarding Published Applications, by sending specially crafted requests to the Citrix server, and examining responses.

By bruteforcing a Citrix Published Applications list, it may be possible for an attacker to launch further attacks. 

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/21913.tar.gz

Navigation

Suggest Exploit

Services By CQR