vendor:
Access Gateway
by:
George D. Gal, Erwin Paternotte
N/A
CVSS
N/A
Command Injection
78
CWE
Product Name: Access Gateway
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: CVE-2010-4566
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Unix
2010
Citrix Access Gateway Command Execution
The Citrix Access Gateway provides support for multiple authentication types. When utilizing the external legacy NTLM authentication module known as ntlm_authenticator the Access Gateway spawns the Samba 'samedit' command line utility to verify a user's identity and password. By embedding shell metacharacters in the web authentication form it is possible to execute arbitrary commands on the Access Gateway.
Mitigation:
No known mitigation or remediation for this vulnerability