Vulnerability Description
Citrix EdgeSight 4.2 and 4.5 for Presentation Server, EdgeSight 4.2 and 4.5 for Endpoints, and EdgeSight for NetScaler 1.0 and 1.1 do not properly store database credentials in configuration files, which allows local users to obtain sensitive information.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Citrix | Edgesight For Endpoints | 4.2 |
| Citrix | Edgesight For Netscaler | 1.0 |
| Citrix | Edgesight For Presentation Server | 4.2 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/27935Vendor Advisory
- http://support.citrix.com/article/CTX115281Patch
- http://www.securityfocus.com/bid/26705ExploitPatch
- http://www.securitytracker.com/id?1019050
- http://www.vupen.com/english/advisories/2007/4091
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38861
- http://secunia.com/advisories/27935Vendor Advisory
- http://support.citrix.com/article/CTX115281Patch
- http://www.securityfocus.com/bid/26705ExploitPatch
- http://www.securitytracker.com/id?1019050
- http://www.vupen.com/english/advisories/2007/4091
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38861
FAQ
What is CVE-2007-6267?
CVE-2007-6267 is a vulnerability with a CVSS score of 2.1 (LOW). Citrix EdgeSight 4.2 and 4.5 for Presentation Server, EdgeSight 4.2 and 4.5 for Endpoints, and EdgeSight for NetScaler 1.0 and 1.1 do not properly store database credentials in configuration files, wh...
How severe is CVE-2007-6267?
CVE-2007-6267 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-6267?
Check the references section above for vendor advisories and patch information. Affected products include: Citrix Edgesight For Endpoints, Citrix Edgesight For Netscaler, Citrix Edgesight For Presentation Server.