CVSS: 6.8EPSS: 0%CPEs: 4EXPL: 0CVE-2007-4016
https://notcve.org/view.php?id=CVE-2007-4016
Unspecified vulnerability in the client components in Citrix Access Gateway Standard Edition before 4.5.5 and Advanced Edition before 4.5 HF1 allows attackers to execute arbitrary code via unspecified vectors. Vulnerabilidad no especificada en los componentes de cliente en Citrix Access Gateway Standard Edition anterior a 4.5.5 y Advanced Edition anterior a 4.5 HF1 permite a atacantes ejecutar código de su elección a través de vectores no especificados. • http://osvdb.org/43983 http://secunia.com/advisories/26143 http://support.citrix.com/article/CTX113815 http://support.citrix.com/article/CTX114028 http://www.securityfocus.com/bid/24975 http://www.securitytracker.com/id?1018435 http://www.vupen.com/english/advisories/2007/2583 •
CVSS: 4.3EPSS: 1%CPEs: 2EXPL: 0CVE-2007-3679
https://notcve.org/view.php?id=CVE-2007-3679
The Citrix EPA ActiveX control (aka the "endpoint checking control" or CCAOControl Object) before 4.5.0.0 in npCtxCAO.dll in Citrix Access Gateway Standard Edition before 4.5.5 and Advanced Edition before 4.5 HF1 allows remote attackers to download and execute arbitrary programs onto a client system. El control ActiveX Citrix EPA (también conocido como el "endpoint checking control" ó Objeto CCAOControl) versiones anteriores a 4.5.0.0 en npCtxCAO.dll de Citrix Access Gateway Standard Edition versiones anteriores a 4.5.5 y Advanced Edition versiones anteriores a 4.5 HF1, permite a atacantes remotos descargar y ejecutar programas de su elección en un sistema cliente. • http://osvdb.org/37845 http://secunia.com/advisories/26143 http://securityreason.com/securityalert/2916 http://support.citrix.com/article/CTX113815 http://support.citrix.com/article/CTX114028 http://www.securityfocus.com/archive/1/474204/100/0/threaded http://www.securityfocus.com/bid/24865 http://www.securityfocus.com/bid/24975 http://www.symantec.com/content/en/us/enterprise/research/SYMSA-2007-006.txt http://www.vupen.com/english/advisories/2007/2583 https://exchange.xf •
CVSS: 6.0EPSS: 0%CPEs: 5EXPL: 0CVE-2006-6573
https://notcve.org/view.php?id=CVE-2006-6573
Unspecified vulnerability in Citrix Access Gateway 4.5 Advanced Edition, and 4.2 with Advanced Access Control (AAC) 4.2, when deployed on the Access Gateway appliance 4.2 through 4.2.2 allows remote authenticated users to "gain access to data" and obtain sensitive information via unspecified vectors. Vulnerabilidad sin especificar en el Citrix Access Gateway 4.5 Advanced Edition y 4.2 con el Advanced Access Control (AAC) 4.2, cuando se está utilizando la Access Gateway appliance desde la 4.2 hasta la 4.2.2 inclusive, permite a atacantes remotos autenticados, conseguir acceso a los datos y obtener información sensible mediante vectores sin especificar. • http://secunia.com/advisories/22908 http://secunia.com/advisories/22909 http://securitytracker.com/id?1017228 http://support.citrix.com/article/CTX111695 http://www.kb.cert.org/vuls/id/555220 http://www.securityfocus.com/bid/21079 http://www.vupen.com/english/advisories/2006/4524 https://exchange.xforce.ibmcloud.com/vulnerabilities/30298 •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2006-6572
https://notcve.org/view.php?id=CVE-2006-6572
Unspecified vulnerability in Citrix Advanced Access Control (AAC) Option 4.0, and Access Gateway 4.2 with Advanced Access Control 4.2, before 20061114, when the Browser-Only access feature is enabled, allows remote authenticated users to bypass access policies via a certain login method, a different issue than CVE-2006-4846. NOTE: some of these details are obtained from third party information. Vulnerabilidad no especificada en Citrix Advanced Access Control (AAC) Option 4.0, y Access Gateway 4.2 con Advanced Access Control 4.2, anterior a 20061114, cuando el acceso a la característica Browser-Only está activado, permite a usuarios remotos validados evitar las políticas de acceso a través de ciertos métodos de login, un asunto diferente que CVE-2006-4846. NOTA: algunos de estos detalles se obtuvieron de fuentes de información de terceros. • http://secunia.com/advisories/22909 http://securitytracker.com/id?1017227 http://support.citrix.com/article/CTX111614 http://support.citrix.com/article/CTX111615 http://www.securityfocus.com/bid/21080 http://www.vupen.com/english/advisories/2006/4525 https://exchange.xforce.ibmcloud.com/vulnerabilities/30302 https://exchange.xforce.ibmcloud.com/vulnerabilities/30303 •
CVSS: 5.1EPSS: 5%CPEs: 1EXPL: 0CVE-2006-4846
https://notcve.org/view.php?id=CVE-2006-4846
Unspecified vulnerability in Citrix Access Gateway with Advanced Access Control (AAC) 4.2 before 20060914, when AAC is configured to use LDAP authentication, allows remote attackers to bypass authentication via unknown vectors. Vulnerabilidad sin especificar en Citrix Access Gateway con Advanced Access Control (AAC) 4.2 anterior al 14/09/2006, cuando AAC está configurado para usar autenticación LDAP, permite a atacantes remotos evitar la autenticación a través de vectores desconocidos. • http://secunia.com/advisories/21941 http://securitytracker.com/id?1016874 http://support.citrix.com/article/CTX110439 http://support.citrix.com/article/CTX110950 http://www.kb.cert.org/vuls/id/658620 http://www.osvdb.org/28938 http://www.securityfocus.com/bid/20066 http://www.vupen.com/english/advisories/2006/3643 https://exchange.xforce.ibmcloud.com/vulnerabilities/28990 •