CVE-2009-2453

Published: Jul 14, 2009Modified: Apr 23, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Citrix XenApp (formerly Presentation Server) 4.5 Hotfix Rollup Pack 3 does not apply an access policy when it is defined with the Access Gateway Advanced Edition filters, which allows attackers to bypass intended access restrictions via unknown vectors.

Affected (5)

Products: Citrix: Presentation Server, Xenapp

2 products

Presentation Server

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Citrix Presentation Server	Version 4.5
Citrix Presentation Server	Version 4.5
Citrix Presentation Server	Version 4.5
Citrix Presentation Server	Version 4.5 fp1
Citrix Xenapp	Version 4.5 fp3

Related CWEs

References (12)

http://osvdb.org/53900

Source: cve@mitre.org

http://secunia.com/advisories/34865

Source: cve@mitre.org

Vendor Advisory

http://support.citrix.com/article/CTX118792

Source: cve@mitre.org

PatchVendor Advisory

http://www.securityfocus.com/bid/34691

Source: cve@mitre.org

Patch

http://www.securitytracker.com/id?1022114

Source: cve@mitre.org

Patch

http://www.vupen.com/english/advisories/2009/1154

Source: cve@mitre.org

PatchVendor Advisory

http://osvdb.org/53900

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/34865

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://support.citrix.com/article/CTX118792

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.securityfocus.com/bid/34691

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.securitytracker.com/id?1022114

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.vupen.com/english/advisories/2009/1154

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.