CVE-2007-0011 - OpenCVE

The web portal interface in Citrix Access Gateway (aka Citrix Advanced Access Control) before Advanced Edition 4.5 HF1 places a session ID in the URL, which allows context-dependent attackers to hijack sessions by reading "residual information", including the a referer log, browser history, or browser cache.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:L/Au:N/C:P/I:N/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Citrix	Access Gateway

Configuration 1 [-]

OR	cpe:2.3:a:citrix:access_gateway:4.0:::::::*
	cpe:2.3:a:citrix:access_gateway:4.2:::::::*
	cpe:2.3:a:citrix:access_gateway:4.5::advanced:::::
	cpe:2.3:a:citrix:access_gateway:4.5::standard:::::

No data.

References

Link	Providers
http://osvdb.org/45288
http://secunia.com/advisories/26143
http://securitytracker.com/id?1018435
http://support.citrix.com/article/CTX112803
http://support.citrix.com/article/CTX113814
http://www.securityfocus.com/archive/1/482626/100/100/threaded
http://www.securityfocus.com/bid/24975
http://www.vupen.com/english/advisories/2007/2583
https://exchange.xforce.ibmcloud.com/vulnerabilities/35510

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-11-05T17:00:00

Updated: 2024-08-07T12:03:36.695Z

Reserved: 2007-01-01T00:00:00

Link: CVE-2007-0011

Vulnrichment

No data.

NVD

Status : Modified

Published: 2007-11-05T17:46:00.000

Modified: 2018-10-16T16:30:16.790

Link: CVE-2007-0011

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-07-19T00:00:00", "descriptions": [{"lang": "en", "value": "The web portal interface in Citrix Access Gateway (aka Citrix Advanced Access Control) before Advanced Edition 4.5 HF1 places a session ID in the URL, which allows context-dependent attackers to hijack sessions by reading \"residual information\", including the a referer log, browser history, or browser cache."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-16T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "ADV-2007-2583", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/2583"}, {"name": "26143", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/26143"}, {"name": "24975", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/24975"}, {"name": "45288", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/45288"}, {"name": "1018435", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1018435"}, {"name": "citrix-access-unspeci-information-disclosure(35510)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/35510"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.citrix.com/article/CTX112803"}, {"name": "20071022 Corsaire Security Advisory - Citrix Access Gateway session ID disclosure issue", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/482626/100/100/threaded"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.citrix.com/article/CTX113814"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-0011", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The web portal interface in Citrix Access Gateway (aka Citrix Advanced Access Control) before Advanced Edition 4.5 HF1 places a session ID in the URL, which allows context-dependent attackers to hijack sessions by reading \"residual information\", including the a referer log, browser history, or browser cache."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "ADV-2007-2583", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/2583"}, {"name": "26143", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/26143"}, {"name": "24975", "refsource": "BID", "url": "http://www.securityfocus.com/bid/24975"}, {"name": "45288", "refsource": "OSVDB", "url": "http://osvdb.org/45288"}, {"name": "1018435", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1018435"}, {"name": "citrix-access-unspeci-information-disclosure(35510)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/35510"}, {"name": "http://support.citrix.com/article/CTX112803", "refsource": "CONFIRM", "url": "http://support.citrix.com/article/CTX112803"}, {"name": "20071022 Corsaire Security Advisory - Citrix Access Gateway session ID disclosure issue", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/482626/100/100/threaded"}, {"name": "http://support.citrix.com/article/CTX113814", "refsource": "CONFIRM", "url": "http://support.citrix.com/article/CTX113814"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T12:03:36.695Z"}, "title": "CVE Program Container", "references": [{"name": "ADV-2007-2583", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2007/2583"}, {"name": "26143", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/26143"}, {"name": "24975", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/24975"}, {"name": "45288", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/45288"}, {"name": "1018435", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1018435"}, {"name": "citrix-access-unspeci-information-disclosure(35510)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/35510"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.citrix.com/article/CTX112803"}, {"name": "20071022 Corsaire Security Advisory - Citrix Access Gateway session ID disclosure issue", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/482626/100/100/threaded"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.citrix.com/article/CTX113814"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-0011", "datePublished": "2007-11-05T17:00:00", "dateReserved": "2007-01-01T00:00:00", "dateUpdated": "2024-08-07T12:03:36.695Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:citrix:access_gateway:4.0:*:*:*:*:*:*:*", "matchCriteriaId": "B1A9C532-DE4A-40B5-932A-9229DEA92CF4", "vulnerable": true}, {"criteria": "cpe:2.3:a:citrix:access_gateway:4.2:*:*:*:*:*:*:*", "matchCriteriaId": "0C3186D6-9A71-4B1A-8A2A-D801408E5AF1", "vulnerable": true}, {"criteria": "cpe:2.3:a:citrix:access_gateway:4.5:*:advanced:*:*:*:*:*", "matchCriteriaId": "E674A101-814E-4954-B344-663AF49FED35", "vulnerable": true}, {"criteria": "cpe:2.3:a:citrix:access_gateway:4.5:*:standard:*:*:*:*:*", "matchCriteriaId": "C019102F-CED4-4911-9B02-8D88AF9796DD", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The web portal interface in Citrix Access Gateway (aka Citrix Advanced Access Control) before Advanced Edition 4.5 HF1 places a session ID in the URL, which allows context-dependent attackers to hijack sessions by reading \"residual information\", including the a referer log, browser history, or browser cache."}, {"lang": "es", "value": "El interfaz del portal web de Citrix Access Gateway (tambi\u00e9n conocido como Citrix Advanced Access Control) versiones anteriores a Advanced Edition 4.5 HF1, sit\u00faa un ID de sesi\u00f3n en el URL, lo cual permite a atacantes locales o remotos dependientes del contexto secuestrar sesiones al leer \"informaci\u00f3n residual\", incluyendo un fichero de trazas utilizado, historial del navegador, o la cach\u00e9 del navegador."}], "id": "CVE-2007-0011", "lastModified": "2018-10-16T16:30:16.790", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-11-05T17:46:00.000", "references": [{"source": "cve@mitre.org", "url": "http://osvdb.org/45288"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/26143"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1018435"}, {"source": "cve@mitre.org", "url": "http://support.citrix.com/article/CTX112803"}, {"source": "cve@mitre.org", "url": "http://support.citrix.com/article/CTX113814"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/482626/100/100/threaded"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/24975"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2007/2583"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/35510"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}