Unrated severityNVD Advisory· Published Nov 17, 2008· Updated Apr 23, 2026

CVE-2008-5107

Description

The installation process for Citrix Presentation Server 4.5 and Desktop Server 1.0, when MSI logging is enabled, stores database credentials in MSI log files, which allows local users to obtain these credentials by reading the log files.

Affected products

Citrix Systems/Desktop Server
cpe:2.3:a:citrix:desktop_server:1.0:*:*:*:*:*:*:*
Citrix Systems/Presentation Server
cpe:2.3:a:citrix:presentation_server:4.5:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.citrix.com/article/CTX116228nvdVendor Advisory
www.securityfocus.com/bid/28047nvdThird Party AdvisoryVDB Entry
www.vupen.com/english/advisories/2008/0705/referencesnvdPermissions Required

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000