Citrix XenDesktop 7.x, 5.x, and 4.x, when pooled random desktop groups is enabled and ShutdownDesktopsAfterUse is disabled, allows local guest users to gain access to another user's desktop via unspecified vectors.
References
Link | Resource |
---|---|
http://secunia.com/advisories/59889 | Third Party Advisory |
http://support.citrix.com/article/CTX139591 | Patch Vendor Advisory |
http://www.securityfocus.com/bid/68530 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1030566 | Third Party Advisory VDB Entry |
https://exchange.xforce.ibmcloud.com/vulnerabilities/94460 | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2014-07-11 14:55
Updated : 2024-02-28 12:20
NVD link : CVE-2014-4700
Mitre link : CVE-2014-4700
CVE.ORG link : CVE-2014-4700
JSON object : View
Products Affected
citrix
- xendesktop
CWE
CWE-264
Permissions, Privileges, and Access Controls