Published: 11/07/2014 Updated: 18/12/2018

CVSS v2 Base Score: 4.9 | Impact Score: 6.4 | Exploitability Score: 4.4

VMScore: 436

Vector: AV:A/AC:M/Au:S/C:P/I:P/A:P

Citrix XenDesktop 7.x, 5.x, and 4.x, when pooled random desktop groups is enabled and ShutdownDesktopsAfterUse is disabled, allows local guest users to gain access to another user's desktop via unspecified vectors.

Vulnerable Product	Search on Vulmon	Subscribe to Product
citrix xendesktop
citrix xendesktop 4.0
citrix xendesktop 5.6

Description of Problem A vulnerability has been identified in Citrix XenDesktop that could result in a user gaining unauthorized interactive access to another user’s desktop This vulnerability affects a specific, non-default configuration of Citrix XenDesktop 7 (all versions up to and including 75), Citrix XenDesktop 5 (up to and including Rol ...

CWE-264 http://support.citrix.com/article/CTX139591 http://www.securitytracker.com/id/1030566 http://secunia.com/advisories/59889 http://www.securityfocus.com/bid/68530 https://exchange.xforce.ibmcloud.com/vulnerabilities/94460 https://nvd.nist.gov https://support.citrix.com/article/CTX139591

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-4700

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect