Lucene search

[email protected]CVE-2008-6561

HistoryMar 31, 2009 - 5:30 p.m.

CVE-2008-6561

2009-03-3117:30:00

CWE-200

[email protected]

web.nvd.nist.gov

citrix

presentation server

windows

credential information

memory

local privilege escalation

cve-2008-6561

nvd

1.9 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

6.8 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Citrix Presentation Server Client for Windows before 10.200 does not clear “credential information” from process memory in unspecified circumstances, which might allow local users to gain privileges.

Affected configurations

NVD

Node

citrixpresentation_server_clientMatch10.200

AND

microsoftwindows

CPENameOperatorVersion
citrix:presentation_server_clientcitrix presentation server clienteq10.200

CPE	Name	Operator	Version
citrix:presentation_server_client	citrix presentation server client	eq	10.200

References

support.citrix.com/article/CTX116227

www.securitytracker.com/id?1019605

www.vupen.com/english/advisories/2008/0845

exchange.xforce.ibmcloud.com/vulnerabilities/41102

1.9 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

6.8 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2008-6561

prion1 cvelist1 nvd1