Unrated severityNVD Advisory· Published Dec 20, 2005· Updated Apr 16, 2026

CVE-2005-4412

Description

Citrix Program Neighborhood client before 9.150 caches the user password in plaintext in the GUI while asterisks are used to visually obfuscate the password, which allows attackers with access to the session to obtain the password by using a tool to directly access the field.

Affected products

Citrix Systems/Program Neighborhood Client
cpe:2.3:a:citrix:program_neighborhood_client:*:*:*:*:*:*:*:*
Range: <=9.1
Citrix Systems/Program Neighborhood Agentllm-fuzzy
Range: <9.150

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

securitytracker.com/idnvdExploit
support.citrix.com/article/CTX108108nvdExploitVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000