CVE-2007-6267
NONECitrix EdgeSight 4.2 and 4.5 for Presentation Server, EdgeSight 4.2 and 4.5 for Endpoints, and EdgeSight for NetScaler 1.0 and 1.1 do not properly store database credentials in configuration files, wh
Published: 12/7/2007Updated: 4/9/2025
Description
Citrix EdgeSight 4.2 and 4.5 for Presentation Server, EdgeSight 4.2 and 4.5 for Endpoints, and EdgeSight for NetScaler 1.0 and 1.1 do not properly store database credentials in configuration files, which allows local users to obtain sensitive information.
AI AnalysisPowered by AI
Affected Products
citrixedgesight_for_endpoints
4.2
citrixedgesight_for_endpoints
4.5
citrixedgesight_for_netscaler
1.0
citrixedgesight_for_netscaler
1.1
citrixedgesight_for_presentation_server
4.2
citrixedgesight_for_presentation_server
4.5
References
- http://secunia.com/advisories/27935Vendor Advisory
- http://support.citrix.com/article/CTX115281Patch
- http://www.securityfocus.com/bid/26705ExploitPatch
- http://www.securitytracker.com/id?1019050
- http://www.vupen.com/english/advisories/2007/4091
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38861
- http://secunia.com/advisories/27935Vendor Advisory
- http://support.citrix.com/article/CTX115281Patch
- http://www.securityfocus.com/bid/26705ExploitPatch
- http://www.securitytracker.com/id?1019050
- http://www.vupen.com/english/advisories/2007/4091
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38861