CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
75.8%
Citrix MetaFrame up to XP 1.0 Feature 1, except when running on Windows Server 2003, installs a registry key with an insecure ACL, which allows remote authenticated users to gain privileges.
Vendor | Product | Version | CPE |
---|---|---|---|
citrix | metaframe | 1.8 | cpe:2.3:a:citrix:metaframe:1.8:*:microsoft_nt_4.0_server_terminal_server:*:*:*:*:* |
citrix | metaframe | 1.8 | cpe:2.3:a:citrix:metaframe:1.8:*:microsoft_windows_2000:*:*:*:*:* |
citrix | metaframe_presentation_server | 3.0 | cpe:2.3:a:citrix:metaframe_presentation_server:3.0:*:microsoft_windows_2000:*:*:*:*:* |
citrix | presentation_server | 4.0 | cpe:2.3:a:citrix:presentation_server:4.0:*:microsoft_windows_2000:*:*:*:*:* |