Unrated severityNVD Advisory· Published Jul 14, 2009· Updated Apr 23, 2026

CVE-2009-2453

Description

Citrix XenApp (formerly Presentation Server) 4.5 Hotfix Rollup Pack 3 does not apply an access policy when it is defined with the Access Gateway Advanced Edition filters, which allows attackers to bypass intended access restrictions via unknown vectors.

Affected products

Citrix Systems/Presentation Server4 versions
cpe:2.3:a:citrix:presentation_server:4.5:-:se:*:*:*:*:*+ 3 more
- cpe:2.3:a:citrix:presentation_server:4.5:-:se:*:*:*:*:*
- cpe:2.3:a:citrix:presentation_server:4.5:-:windows_server_2003:*:*:*:*:*
- cpe:2.3:a:citrix:presentation_server:4.5:-:windows_server_2003_x64:*:*:*:*:*
- cpe:2.3:a:citrix:presentation_server:4.5:fp1:*:*:*:*:*:*
Citrix Systems/Xenapp
cpe:2.3:a:citrix:xenapp:4.5:fp3:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.citrix.com/article/CTX118792nvdPatchVendor Advisory
www.securityfocus.com/bid/34691nvdPatch
www.securitytracker.com/idnvdPatch
www.vupen.com/english/advisories/2009/1154nvdPatchVendor Advisory
secunia.com/advisories/34865nvdVendor Advisory
osvdb.org/53900nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000