{"api_version":"1","generated_at":"2026-04-23T04:09:11+00:00","cve":"CVE-2008-2300","urls":{"html":"https://cve.report/CVE-2008-2300","api":"https://cve.report/api/cve/CVE-2008-2300.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2008-2300","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2008-2300"},"summary":{"title":"CVE-2008-2300","description":"Unspecified vulnerability in Citrix Presentation Server 4.5 and earlier, Citrix Access Essentials 2.0 and earlier, and Citrix Desktop Server 1.0 allows remote authenticated users to access unauthorized desktops via unknown attack vectors.","state":"PUBLISHED","assigner":"mitre","published_at":"2008-05-18 14:20:00","updated_at":"2026-04-23 00:35:47"},"problem_types":["CWE-264","n/a"],"metrics":[{"version":"2.0","source":"nvd@nist.gov","type":"Primary","score":"6.5","severity":"","vector":"AV:N/AC:L/Au:S/C:P/I:P/A:P","data":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:P","baseScore":6.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"}}],"references":[{"url":"http://support.citrix.com/article/CTX116941","name":"http://support.citrix.com/article/CTX116941","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Vulnerability in Citrix Presentation Server could allow authenticated users to gain unauthorized access to a desktop session","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/42439","name":"https://exchange.xforce.ibmcloud.com/vulnerabilities/42439","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"IBM X-Force Exchange","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/30271","name":"http://secunia.com/advisories/30271","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"],"title":"Citrix Presentation Server Weakness and Unauthorised Access - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.securitytracker.com/id?1020027","name":"http://www.securitytracker.com/id?1020027","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Citrix Presentation Server Lets Remote Authenticated Users Access Desktop Session Without Permission - SecurityTracker","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.vupen.com/english/advisories/2008/1530/references","name":"http://www.vupen.com/english/advisories/2008/1530/references","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Webmail : Solution de messagerie professionnelle - OVHcloud- OVH","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.securityfocus.com/bid/29232","name":"http://www.securityfocus.com/bid/29232","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Citrix Presentation Server Authentication Bypass Vulnerability","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2008-2300","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2008-2300","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"n/a","product":"n/a","version":"affected n/a","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2008","cve_id":"2300","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"citrix","cpe5":"access_essentials","cpe6":"1.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"2300","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"citrix","cpe5":"access_essentials","cpe6":"1.5","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"2300","vulnerable":"1","versionEndIncluding":"2.0","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"citrix","cpe5":"access_essentials","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"2300","vulnerable":"1","versionEndIncluding":"4.5","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"citrix","cpe5":"citrix_presentation_server","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"2300","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"citrix","cpe5":"desktop_server","cpe6":"1.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"2300","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"citrix","cpe5":"metaframe_presentation_server","cpe6":"4.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"providerMetadata":{"dateUpdated":"2024-08-07T08:58:00.835Z","orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE"},"references":[{"name":"29232","tags":["vdb-entry","x_refsource_BID","x_transferred"],"url":"http://www.securityfocus.com/bid/29232"},{"name":"30271","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/30271"},{"name":"1020027","tags":["vdb-entry","x_refsource_SECTRACK","x_transferred"],"url":"http://www.securitytracker.com/id?1020027"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://support.citrix.com/article/CTX116941"},{"name":"ADV-2008-1530","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2008/1530/references"},{"name":"citrix-presentationserver-unauth-access(42439)","tags":["vdb-entry","x_refsource_XF","x_transferred"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/42439"}],"title":"CVE Program Container"}],"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2008-05-12T00:00:00.000Z","descriptions":[{"lang":"en","value":"Unspecified vulnerability in Citrix Presentation Server 4.5 and earlier, Citrix Access Essentials 2.0 and earlier, and Citrix Desktop Server 1.0 allows remote authenticated users to access unauthorized desktops via unknown attack vectors."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2017-08-07T12:57:01.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"name":"29232","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/29232"},{"name":"30271","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/30271"},{"name":"1020027","tags":["vdb-entry","x_refsource_SECTRACK"],"url":"http://www.securitytracker.com/id?1020027"},{"tags":["x_refsource_CONFIRM"],"url":"http://support.citrix.com/article/CTX116941"},{"name":"ADV-2008-1530","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2008/1530/references"},{"name":"citrix-presentationserver-unauth-access(42439)","tags":["vdb-entry","x_refsource_XF"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/42439"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2008-2300","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Unspecified vulnerability in Citrix Presentation Server 4.5 and earlier, Citrix Access Essentials 2.0 and earlier, and Citrix Desktop Server 1.0 allows remote authenticated users to access unauthorized desktops via unknown attack vectors."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"29232","refsource":"BID","url":"http://www.securityfocus.com/bid/29232"},{"name":"30271","refsource":"SECUNIA","url":"http://secunia.com/advisories/30271"},{"name":"1020027","refsource":"SECTRACK","url":"http://www.securitytracker.com/id?1020027"},{"name":"http://support.citrix.com/article/CTX116941","refsource":"CONFIRM","url":"http://support.citrix.com/article/CTX116941"},{"name":"ADV-2008-1530","refsource":"VUPEN","url":"http://www.vupen.com/english/advisories/2008/1530/references"},{"name":"citrix-presentationserver-unauth-access(42439)","refsource":"XF","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/42439"}]}}}},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2008-2300","datePublished":"2008-05-18T14:00:00.000Z","dateReserved":"2008-05-18T00:00:00.000Z","dateUpdated":"2024-08-07T08:58:00.835Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"},"nvd":{"publishedDate":"2008-05-18 14:20:00","lastModifiedDate":"2026-04-23 00:35:47","problem_types":["CWE-264","n/a"],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:P","baseScore":6.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":true,"userInteractionRequired":false}]},"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:citrix:access_essentials:*:*:*:*:*:*:*:*","versionEndIncluding":"2.0","matchCriteriaId":"96365CE2-22BF-408E-939F-22FFABF63061"},{"vulnerable":true,"criteria":"cpe:2.3:a:citrix:access_essentials:1.0:*:*:*:*:*:*:*","matchCriteriaId":"2FF9F197-991D-4920-BE9A-2E3495E76CD2"},{"vulnerable":true,"criteria":"cpe:2.3:a:citrix:access_essentials:1.5:*:*:*:*:*:*:*","matchCriteriaId":"21B89150-1806-481D-B0D9-FD37BA4798D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:citrix:citrix_presentation_server:*:*:*:*:*:*:*:*","versionEndIncluding":"4.5","matchCriteriaId":"8A571EDD-12ED-4398-8AED-5916A4580294"},{"vulnerable":true,"criteria":"cpe:2.3:a:citrix:desktop_server:1.0:*:*:*:*:*:*:*","matchCriteriaId":"08AEEC3F-E8DD-4535-98D2-4CFD83439A69"},{"vulnerable":true,"criteria":"cpe:2.3:a:citrix:metaframe_presentation_server:4.0:*:*:*:*:*:*:*","matchCriteriaId":"15137D61-8E46-4F46-B475-098429A79484"}]}]}]},"legacy_mitre":{"record":{"CveYear":"2008","CveId":"2300","Ordinal":"1","Title":"CVE-2008-2300","CVE":"CVE-2008-2300","Year":"2008"},"notes":[{"CveYear":"2008","CveId":"2300","Ordinal":"1","NoteData":"Unspecified vulnerability in Citrix Presentation Server 4.5 and earlier, Citrix Access Essentials 2.0 and earlier, and Citrix Desktop Server 1.0 allows remote authenticated users to access unauthorized desktops via unknown attack vectors.","Type":"Description","Title":"CVE-2008-2300"},{"CveYear":"2008","CveId":"2300","Ordinal":"2","NoteData":"2008-05-18","Type":"Other","Title":"Published"},{"CveYear":"2008","CveId":"2300","Ordinal":"3","NoteData":"2017-08-07","Type":"Other","Title":"Modified"}]}}}