Back to search
CVE-2009-3936
Published: Nov 13, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
Unspecified vulnerability in Citrix Online Plug-in for Windows 11.0.x before 11.0.150 and 11.x before 11.2, Online Plug-in for Mac before 11.0, Receiver for iPhone before 1.0.3, and ICA Java, Mac, UNIX, and Windows Clients for XenApp and XenDesktop allows remote attackers to impersonate the SSL/TLS server and bypass authentication via a crafted certificate, a different vulnerability than CVE-2009-3555.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2009-3206
vdb-entry
x_refsource_VUPEN
http://support.citrix.com/article/CTX123248
x_refsource_CONFIRM
37073
vdb-entry
x_refsource_BID
37319
third-party-advisory
x_refsource_SECUNIA
1023168
vdb-entry
x_refsource_SECTRACK
citrix-ssl-spoofing(54213)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now