Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The web authentication form in the NT4 authentication component in Citrix Access Gateway Enterprise Edition 9.2-49.8 and earlier, and the NTLM authentication component in Access Gateway Standard and Advanced Editions before Access Gateway 5.0, allows attackers to execute arbitrary commands via shell metacharacters in the password field.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Citrix Access Gateway NT4和NTLM认证组件远程命令注入漏洞
Vulnerability Description
Citrix Access Gateway是一款通用的SSL VPN设备。 Citrix Access Gateway Enterprise Edition 9.2-49.8及之前版本中的NT4认证组件,Access Gateway 5.0之前的Access Gateway Standard和Advanced Editions中的NTLM认证组件中的web认证表单中存在命令注入漏洞。远程攻击者可借助密码字段中的shell元字符执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A