CVSS: 8.8EPSS: 2%CPEs: 2EXPL: 0CVE-2007-4017
https://notcve.org/view.php?id=CVE-2007-4017
26 Jul 2007 — Cross-site request forgery (CSRF) vulnerability in the web-based administration console in Citrix Access Gateway before firmware 4.5.5 allows remote attackers to perform certain configuration changes as administrators. Vulnerabilidad de falsificación de petición en sitios cruzados (CSRF) en la consola del administrador basado en web en Citrix Access Gateway anterior al software empotrado (firmware) 4.5.5 permite a atacantes remotos llevar a cabo ciertos cambios de configuracion como administradores. • http://osvdb.org/37841 •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2007-3679 – SYMSA-2007-006.txt
https://notcve.org/view.php?id=CVE-2007-3679
21 Jul 2007 — The Citrix EPA ActiveX control (aka the "endpoint checking control" or CCAOControl Object) before 4.5.0.0 in npCtxCAO.dll in Citrix Access Gateway Standard Edition before 4.5.5 and Advanced Edition before 4.5 HF1 allows remote attackers to download and execute arbitrary programs onto a client system. El control ActiveX Citrix EPA (también conocido como el "endpoint checking control" ó Objeto CCAOControl) versiones anteriores a 4.5.0.0 en npCtxCAO.dll de Citrix Access Gateway Standard Edition versiones anter... • http://osvdb.org/37845 •
CVSS: 6.5EPSS: 1%CPEs: 5EXPL: 0CVE-2006-6573
https://notcve.org/view.php?id=CVE-2006-6573
15 Dec 2006 — Unspecified vulnerability in Citrix Access Gateway 4.5 Advanced Edition, and 4.2 with Advanced Access Control (AAC) 4.2, when deployed on the Access Gateway appliance 4.2 through 4.2.2 allows remote authenticated users to "gain access to data" and obtain sensitive information via unspecified vectors. Vulnerabilidad sin especificar en el Citrix Access Gateway 4.5 Advanced Edition y 4.2 con el Advanced Access Control (AAC) 4.2, cuando se está utilizando la Access Gateway appliance desde la 4.2 hasta la 4.2.2 ... • http://secunia.com/advisories/22908 •
CVSS: 8.1EPSS: 0%CPEs: 2EXPL: 0CVE-2006-6572
https://notcve.org/view.php?id=CVE-2006-6572
15 Dec 2006 — Unspecified vulnerability in Citrix Advanced Access Control (AAC) Option 4.0, and Access Gateway 4.2 with Advanced Access Control 4.2, before 20061114, when the Browser-Only access feature is enabled, allows remote authenticated users to bypass access policies via a certain login method, a different issue than CVE-2006-4846. NOTE: some of these details are obtained from third party information. Vulnerabilidad no especificada en Citrix Advanced Access Control (AAC) Option 4.0, y Access Gateway 4.2 con Advanc... • http://secunia.com/advisories/22909 •
CVSS: 9.8EPSS: 3%CPEs: 1EXPL: 0CVE-2006-4846
https://notcve.org/view.php?id=CVE-2006-4846
19 Sep 2006 — Unspecified vulnerability in Citrix Access Gateway with Advanced Access Control (AAC) 4.2 before 20060914, when AAC is configured to use LDAP authentication, allows remote attackers to bypass authentication via unknown vectors. Vulnerabilidad sin especificar en Citrix Access Gateway con Advanced Access Control (AAC) 4.2 anterior al 14/09/2006, cuando AAC está configurado para usar autenticación LDAP, permite a atacantes remotos evitar la autenticación a través de vectores desconocidos. • http://secunia.com/advisories/21941 •