Lucene search

MitreCVE-2007-4018

HistoryJul 26, 2007 - 1:30 a.m.

CVE-2007-4018

2007-07-2601:30:00

mitre

web.nvd.nist.gov

cve-2007-4018

citrix

access gateway

advanced edition

firmware

phishing attacks

nvd

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.7

Confidence

Low

EPSS

0.006

Percentile

78.8%

JSON

Citrix Access Gateway Advanced Edition before firmware 4.5.5 allows attackers to redirect users to arbitrary web sites and conduct phishing attacks via unknown vectors.

Affected configurations

Nvd

Node

citrixaccess_gatewayRange≤4.5advanced

citrixaccess_gatewayRange≤4.5standard

VendorProductVersionCPE
citrixaccess_gateway*cpe:2.3:a:citrix:access_gateway:*:*:advanced:*:*:*:*:*
citrixaccess_gateway*cpe:2.3:a:citrix:access_gateway:*:*:standard:*:*:*:*:*

Vendor	Product	Version	CPE
citrix	access_gateway	*	cpe:2.3:a:citrix:access_gateway:::advanced:::::*
citrix	access_gateway	*	cpe:2.3:a:citrix:access_gateway:::standard:::::*

References

osvdb.org/37840

secunia.com/advisories/26143

support.citrix.com/article/CTX113816

support.citrix.com/article/CTX114028

www.securityfocus.com/bid/24975

www.securitytracker.com/id?1018435

www.vupen.com/english/advisories/2007/2583

exchange.xforce.ibmcloud.com/vulnerabilities/35512

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.7

Confidence

Low

EPSS

0.006

Percentile

78.8%

JSON

Related for CVE-2007-4018