CVE-2014-4700

Published: Jul 11, 2014Modified: May 6, 2026

4.9

Vector

AV:A/AC:M/Au:S/C:P/I:P/A:P

Exploitability: 4.4 / Impact: 6.4

Source: NVD

Description

Citrix XenDesktop 7.x, 5.x, and 4.x, when pooled random desktop groups is enabled and ShutdownDesktopsAfterUse is disabled, allows local guest users to gain access to another user's desktop via unspecified vectors.

Affected (6)

Products: Citrix: Xendesktop

1 product

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Citrix Xendesktop	From 5.0 to 5.6
Citrix Xendesktop	From 7.0 to 7.11
Citrix Xendesktop	Version 4.0
Citrix Xendesktop	Version 4.0 fp1
Citrix Xendesktop	Version 4.0 fp2
Citrix Xendesktop	Version 5.6 fp1

Related CWEs

References (10)

http://secunia.com/advisories/59889

Source: cve@mitre.org

Third Party Advisory

http://support.citrix.com/article/CTX139591

Source: cve@mitre.org

PatchVendor Advisory

http://www.securityfocus.com/bid/68530

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1030566

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

https://exchange.xforce.ibmcloud.com/vulnerabilities/94460

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://secunia.com/advisories/59889

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://support.citrix.com/article/CTX139591

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.securityfocus.com/bid/68530

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1030566

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://exchange.xforce.ibmcloud.com/vulnerabilities/94460

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

Timeline

No history available yet.