Orange Business Services
Vigil@nce Vigil@nce Vigil@nce
we track for your security since 1999
 home presentation vulnerabilities documentation contact  
subscriber area subscriber area
free access free access
Vigil@nce team describes computer vulnerabilities impacting your systems, and offers solutions to correct them.
recent vulnerabilities recent vulnerabilities
tracked products tracked products
RSS feed RSS feed
vulnerable product
Vulnerabilities of Citrix XenApp

Citrix XenApp vulnerability: spoofing of X.509 certificate
An attacker can setup a server with a malicious X.509 certificate, in order to deceive victims connecting with Citrix Online Plug-in or an ICA Client.

Citrix XenApp vulnerability: information disclosure
An authenticated attacker can obtains his own secondary credentials used by Citrix Password Manager.

Citrix XenApp vulnerability: incorrect policy
The access policy of Citrix XenApp 4.5 Hotfix Rollup Pack 3 is not applied.

Citrix XenApp vulnerability: vulnerability of the renegotiation
A remote attacker can use a vulnerability of TLS in order to insert plain text data during a renegotiation via a man-in-the-middle attack.

Citrix XenApp vulnerability: Cross Site Scripting
An attacker can generate a Cross Site Scripting in Citrix Web Interface.

Display other vulnerabilities of Citrix XenApp described by Vigil@nce...

Display information about Citrix XenApp:



















France Télécom Copyright 1999-2010 Vigil@nce. Vigil@nce is a service from Orange Business Services. Site map. Legal notice. Version française