CVE-2007-4013

Severity Score

9.3

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Multiple unspecified vulnerabilities in (1) Net6Helper.DLL (aka Net6Launcher Class) 4.5.2 and earlier, (2) npCtxCAO.dll (aka Citrix Endpoint Analysis Client) in a Firefox plugin directory, and (3) a second npCtxCAO.dll (aka CCAOControl Object) before 4.5.0.0 in Citrix Access Gateway Standard Edition before 4.5.5 and Advanced Edition before 4.5 HF1 have unknown impact and attack vectors, possibly related to buffer overflows. NOTE: vector 3 might overlap CVE-2007-3679.

Múltiples vulnerabilidades no especificadas en Net6Helper.DLL (también conocido como Net6Launcher Class) 4.5.2 y anteriores, (2) npCtxCAO.dll (también conocido como Citrix Endpoint Analysis Client) en un extensión de directorio Firefox, y (3) un segundo pCtxCAO.dll (también conocido como CCAOControl Object) anterior a 4.5.0.0 en Citrix Access Gateway Standard Edition anterior a 4.5.5 y Advanced Edition anterior a 4.5 HF1

*Credits: N/A

CVSS Scores

NISTv2 9.3

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2007-07-25 CVE Reserved
2007-07-26 CVE Published
2024-08-07 CVE Updated
2024-09-20 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (8)

URL	Tag	Source
http://osvdb.org/37842	Vdb Entry
http://osvdb.org/37843	Vdb Entry
http://osvdb.org/37844	Vdb Entry
http://www.vupen.com/english/advisories/2007/2583	Vdb Entry

URL	Date	SRC

URL	Date	SRC
http://secunia.com/advisories/26143	2011-03-08
http://support.citrix.com/article/CTX113815	2011-03-08
http://support.citrix.com/article/CTX114028	2011-03-08
http://www.securityfocus.com/bid/24975	2011-03-08

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Citrix Search vendor "Citrix"		Access Gateway Search vendor "Citrix" for product "Access Gateway"				<= 4.5 Search vendor "Citrix" for product "Access Gateway" and version " <= 4.5"		standard		Affected
Citrix Search vendor "Citrix"		Access Gateway Search vendor "Citrix" for product "Access Gateway"				<= 4.5 Search vendor "Citrix" for product "Access Gateway" and version " <= 4.5"		hf1, advanced		Affected
Citrix Search vendor "Citrix"		Endpoint Analysis Client Search vendor "Citrix" for product "Endpoint Analysis Client"				*		-		Affected
Mozilla Search vendor "Mozilla"		Firefox Search vendor "Mozilla" for product "Firefox"				*		-		Affected
Citrix Search vendor "Citrix"		Access Gateway Search vendor "Citrix" for product "Access Gateway"				<= 4.5 Search vendor "Citrix" for product "Access Gateway" and version " <= 4.5"		standard		Affected
Citrix Search vendor "Citrix"		Access Gateway Search vendor "Citrix" for product "Access Gateway"				<= 4.5 Search vendor "Citrix" for product "Access Gateway" and version " <= 4.5"		hf1, advanced		Affected